Munin, Keeper of LoreApr 18, 2017

Oh no.

He's doing the configuration and SIEM management from the domain controller.

Show threadMunin, Keeper of LoreApr 18, 2017

He is -logged in- to the domain controller and is doing the configuration of the SIEM system -from- the UI of the domain controller.

Oh dear.

Show threadMunin, Keeper of LoreApr 18, 2017
The SIEM is running via Hyper-V....ON THE DOMAIN CONTROLLER
Show threadMunin, Keeper of Lore

The DC is running bare-metal, and is hosting Hyper-V instances beneath it.

How is that configuration even -allowed-?

Apr 18, 2017 at 5:44pmWeb