Hello Team,
I will just be brief with my suggestions regarding how authentication is carried out on SEP Manager
- Currently when an admin is created on the SEP console, the user is configured to authenticate locally or via active directory/LDAP.
- If configured to authenticate through AD, user can only be mapped to one server that can authenticate it
- This can be a real issue in the event of a server failure and all admins are configured to authenticate via AD
- Now most organizations have more than one AD servers for redundancy and continuity purposes, hence the reason why i think Symantec should consider the suggestion below
- Enable a feature where users can be authenticated by any AD servers configured on the console (not neccessarily by the one mapped to it)
- This will greatly help whenever a server is down, users can still logon regardless if the primary or mapped server is down
Organizations that have a Disaster recovery site like mine will breathe a sigh of relief if there is a need to fall back (hopefully it doesn't happen!!!)
Thanks
