Site Creds on new install


Site Creds on new install

M

Just recently installed SuperCharger. Default install does not seem to enforce login creds to the web interface (or default to HTTPS). Is there a 'how-to' to turn on auth for management login? 

thanks
-Mot
bjvista

Mot - 1/16/2020
Just recently installed SuperCharger. Default install does not seem to enforce login creds to the web interface (or default to HTTPS). Is there a 'how-to' to turn on auth for management login? 

thanks
-Mot

I wouldn't call it a how to but this article will help:  https://support.logbinder.com/SuperchargerKB/50221/Using-HTTPS-with-Windows-Event-Forwarding-and-Supercharger
M

bjvista - 1/16/2020
Mot - 1/16/2020
Just recently installed SuperCharger. Default install does not seem to enforce login creds to the web interface (or default to HTTPS). Is there a 'how-to' to turn on auth for management login? 

thanks
-Mot

I wouldn't call it a how to but this article will help:  https://support.logbinder.com/SuperchargerKB/50221/Using-HTTPS-with-Windows-Event-Forwarding-and-Supercharger

Thanks for the quick reply but that is more for log sources to WEC. The HTTPS i was referring to was for the management site. That i have figured out (sorta :-) ). What I really need is authentication challenges for username and password to enter the management portal.

thanks 
-Mot
bjvista

Mot - 1/16/2020
bjvista - 1/16/2020
Mot - 1/16/2020
Just recently installed SuperCharger. Default install does not seem to enforce login creds to the web interface (or default to HTTPS). Is there a 'how-to' to turn on auth for management login? 

thanks
-Mot

I wouldn't call it a how to but this article will help:  https://support.logbinder.com/SuperchargerKB/50221/Using-HTTPS-with-Windows-Event-Forwarding-and-Supercharger

Thanks for the quick reply but that is more for log sources to WEC. The HTTPS i was referring to was for the management site. That i have figured out (sorta :-) ). What I really need is authentication challenges for username and password to enter the management portal.

thanks 
-Mot

Did you read #2 in that article?  

You can control who can access the management portal under Settings and then Security.  There are admins, operators and view only permissions you can grant.  I would imagine if you wanted someone to have to authenticate every time they access the portal you would have to create a unique account for Supercharger portal access.  That way if the user is logged in to the server their current login credentials wouldn't allow access to the portal.
M

bjvista - 1/16/2020
Mot - 1/16/2020
bjvista - 1/16/2020
Mot - 1/16/2020
Just recently installed SuperCharger. Default install does not seem to enforce login creds to the web interface (or default to HTTPS). Is there a 'how-to' to turn on auth for management login? 

thanks
-Mot

I wouldn't call it a how to but this article will help:  https://support.logbinder.com/SuperchargerKB/50221/Using-HTTPS-with-Windows-Event-Forwarding-and-Supercharger

Thanks for the quick reply but that is more for log sources to WEC. The HTTPS i was referring to was for the management site. That i have figured out (sorta :-) ). What I really need is authentication challenges for username and password to enter the management portal.

thanks 
-Mot

Did you read #2 in that article?  

You can control who can access the management portal under Settings and then Security.  There are admins, operators and view only permissions you can grant.  I would imagine if you wanted someone to have to authenticate every time they access the portal you would have to create a unique account for Supercharger portal access.  That way if the user is logged in to the server their current login credentials wouldn't allow access to the portal.

yes. i read over #2 and while it related one would expect these days that default install would preconfigure a forwarder to an https site.

much more important....user logons. yes, we have users configured in the interface but no one is challanged connecting to the management interface. I do need step by step instructions on configuration of that. 
bjvista

Mot - 1/21/2020
bjvista - 1/16/2020
Mot - 1/16/2020
bjvista - 1/16/2020
Mot - 1/16/2020
Just recently installed SuperCharger. Default install does not seem to enforce login creds to the web interface (or default to HTTPS). Is there a 'how-to' to turn on auth for management login? 

thanks
-Mot

I wouldn't call it a how to but this article will help:  https://support.logbinder.com/SuperchargerKB/50221/Using-HTTPS-with-Windows-Event-Forwarding-and-Supercharger

Thanks for the quick reply but that is more for log sources to WEC. The HTTPS i was referring to was for the management site. That i have figured out (sorta :-) ). What I really need is authentication challenges for username and password to enter the management portal.

thanks 
-Mot

Did you read #2 in that article?  

You can control who can access the management portal under Settings and then Security.  There are admins, operators and view only permissions you can grant.  I would imagine if you wanted someone to have to authenticate every time they access the portal you would have to create a unique account for Supercharger portal access.  That way if the user is logged in to the server their current login credentials wouldn't allow access to the portal.

yes. i read over #2 and while it related one would expect these days that default install would preconfigure a forwarder to an https site.

much more important....user logons. yes, we have users configured in the interface but no one is challanged connecting to the management interface. I do need step by step instructions on configuration of that. 

What are these users permissions on the local machine?  Are they local admins?
Also with the https configuration there are many options which and each organization has certain standards that must be met which is why we don't pre-configure https.
M

bjvista - 1/21/2020
Mot - 1/21/2020
bjvista - 1/16/2020
Mot - 1/16/2020
bjvista - 1/16/2020
Mot - 1/16/2020
Just recently installed SuperCharger. Default install does not seem to enforce login creds to the web interface (or default to HTTPS). Is there a 'how-to' to turn on auth for management login? 

thanks
-Mot

I wouldn't call it a how to but this article will help:  https://support.logbinder.com/SuperchargerKB/50221/Using-HTTPS-with-Windows-Event-Forwarding-and-Supercharger

Thanks for the quick reply but that is more for log sources to WEC. The HTTPS i was referring to was for the management site. That i have figured out (sorta :-) ). What I really need is authentication challenges for username and password to enter the management portal.

thanks 
-Mot

Did you read #2 in that article?  

You can control who can access the management portal under Settings and then Security.  There are admins, operators and view only permissions you can grant.  I would imagine if you wanted someone to have to authenticate every time they access the portal you would have to create a unique account for Supercharger portal access.  That way if the user is logged in to the server their current login credentials wouldn't allow access to the portal.

yes. i read over #2 and while it related one would expect these days that default install would preconfigure a forwarder to an https site.

much more important....user logons. yes, we have users configured in the interface but no one is challanged connecting to the management interface. I do need step by step instructions on configuration of that. 

What are these users permissions on the local machine?  Are they local admins?
Also with the https configuration there are many options which and each organization has certain standards that must be met which is why we don't pre-configure https.

(user permissions)
yeah....but it really doesnt matter....no one is being challanged
RandyFranklinSmith

I'm pretty sure there's a misunderstanding here.  The Supercharger web application has authentication automatically enabled and required.  Also it's RBAC doesn't permit access to resources unless you have been assigned a security level.  

If you are a member of Administrators on that system you automatically are granted Admin security level in the application.  

You can see that you are authenticated by looking at the lower left hand corner of the screen and you'll see your domain and username.

If your browser supports integrated Windows authentication then you won't be challenged to logon.  
M

RandyFranklinSmith - 1/30/2020
I'm pretty sure there's a misunderstanding here.  The Supercharger web application has authentication automatically enabled and required.  Also it's RBAC doesn't permit access to resources unless you have been assigned a security level.  

If you are a member of Administrators on that system you automatically are granted Admin security level in the application.  

You can see that you are authenticated by looking at the lower left hand corner of the screen and you'll see your domain and username.

If your browser supports integrated Windows authentication then you won't be challenged to logon.  

ok....it was the pass-through auth that confused me...thanks 
GO


Similar Topics


Reading This Topic


Login
Existing Account
Email Address:


Password:


Select a Forum....








LOGbinder Forum


Search