United Technologies TruVision SVR Uživatelská příručka stáhnout pdf (Strana 35)

TruVision SVR System User Guide 35

CHAPTER 6 Secure TruVision SVR Installation

Checklist

This chapter describes the steps for making the TruVision SVR installation more secure. The

intention of this chapter is not to cover general Windows security practices and guidelines, but to

assist IT professionals in applying these practices and guidelines to Interlogix video products.

Limit Access to the Users Group

By default, TruVision SVR is installed with access granted to all clients. Access includes retrieval of

video and the ability to modify the recorder configuration. Access can be limited by running LnrSetup

and opening the Security tab.

Review Machine-Wide DCOM Security Settings

Default machine-wide limits should be adjusted to provide adequate security for the Windows

installation. Each product in the Video Suite has different DCOM configurations based on the

included components.

If access to TruVision SVR is limited to the LNRUsers group, then anonymous user and everyone

entries do not have to be given access. Removing these entries from access permission limits and

launch/activation limits will improve security. The LNRUsers group must be allowed to access and

activate DCOM objects, but not launch them.

If access to the TruVision SVR is not limited to the LNRUsers group, anonymous user access can still

be disabled. With this setting, only users that the system knows about will be able to authenticate.

This could be problematic for installations that do not have a domain server. Therefore the

recommendation is that if the TruVision SVR is secured with this method, then the TruVision SVR

and all client machines should be part of a domain.

1 2 ... 30 31 32 33 34 35 36 37 38 39 40 ... 43 44

Žádné komentáře

United Technologies TruVision SVR Uživatelská příručka Strana 35