Engineers who work for multiple customers

How do you manage all your access and security?

Some I have SSL VPN, some IPSEC, others I have to RDP from a certain IP.

I'm looking for some simpler ways to be able to log into all the customers I service with the lease amount of hassle.

Find more posts tagged with

SAVE $250 on Your CISCO Boot Camp — Use Code "EXAM26"

Exclusively for TechExams members for Infosec Boot Camps starting before April 30, 2026

View CISCO Boot Camps

Comments

mikearama

How could that possibly happen, since, as you said, all your customers could reasonably have different equipment / policies?

Unless you want to install something onsite at each customer... ouch. That would be a political nightmare. Speaking from our experience, not even our most trusted partners/suppliers have autonomous entry into our location. There's no way they would be permitted to create another entry/exit point into our enterprise.

Good luck.

rsutton

RDP with firewall rules only allowing access from our VPN's IP.

Turgon

shodown wrote: »

How do you manage all your access and security?

Some I have SSL VPN, some IPSEC, others I have to RDP from a certain IP.

I'm looking for some simpler ways to be able to log into all the customers I service with the lease amount of hassle.

You will have to suck it up Im afraid. It's something you could ask your resident architect.

vinbuck

I'm no scripting expert, but it seems that you should be able to write a script for each customer so you've only got one thing to click on. The scripts could take care of activating the VPN, launching ssh, rdp, etc and filling in IPs, username, password and other variables. It would be a bit cumbersome if those variables changed frequently though.

That's my 2 pesos....

Turgon

MississippiGuardsman wrote: »

I'm no scripting expert, but it seems that you should be able to write a script for each customer so you've only got one thing to click on. The scripts could take care of activating the VPN, launching ssh, rdp, etc and filling in IPs, username, password and other variables. It would be a bit cumbersome if those variables changed frequently though.

That's my 2 pesos....

Could be a security risk. I wouldn't go there without authority.