The AuthAnvil RWWProtect agent offers companies two functions. It can enforce strong two-factor authentication for administrators to logon to Remote Web Workplace, and provide accurate logging for tracking both remote IT staff and client staff logons to RWW. This tool can also be used to allow non-administrator access to RWW without requiring the use of a token while enforcing it for administrators. This ensures that anyone with administrative rights on a server is authenticated if configured in that way. You can also deny all administrators the rights to logon to RWW at all.
Supported Platforms & Requirements
- Small Business Server 2003 using Remote Web Workplace.
- A running installation of AuthAnvil Two Factor Auth.
- User logged on during installation must be part of a domain administrators group on the SBS box.
The AuthAnvil RWWProtect Agent installation is very simple, using only a few options.
Note: If you are already using Scorpion Softwares RWWGuard 2003 you will not be able to install AuthAnvil RWWProtect.
- Download the AuthAnvil RWWProtect Agent installer from the Legacy Downloads section of www.scorpionsoft.com/downloads/.
- Install the agent. Follow the onscreen instructions to do a base installation. On completion agree to launch the RWWProtect tool.
Configuring the agent is very simple with only a few options available to be set. When the tool launches, you will see the following:
There are two groups of settings. Authentication Mode and AuthAnvil URL.
In the Authentication Mode area you can set the option to allow or prevent administrator access to RWW.
With Prevent administrators from logging into RWW set, administrators will receive the following message when they attempt logging into RWW:
In the AuthAnvil URL area you can enforce AuthAnvil Two Factor Auth authentication for administrators, if you previously enabled access for them. You can also designate the URL to the AuthAnvil Two Factor Auth authentication server you want the agent to use.
With this option enabled administrators will receive the following message without a valid OTP:
Note: If you wish to use an external URL please ensure that the URL is a fully qualified domain name address. ie.https://yourdomain.com/AuthAnvil/SAS.asmx
Use the Verify URL & Save test the URL ensuring it can be reached. Below the configuration area, the most recent RWWProtect logs are displayed.
There are three areas on this tab. Records, Fields to Search and Search Text.
In the first area you can browse existing records being displayed in the area below as well as refreshing the currently displayed logs.
The second area has options as to which fields you want to include in your search, expanding or refining it as needed.
The third area is to enter text to search for the logs. If you leave this empty the search will return all records.
This log is located in the local machines event log called RWWProtect.
Test the configuration by opening Remote Web Workplace and log on as both a user and administrator.
Here is what the RWW logon looks like:
|With RWWProtect enabled||With RWWProtect disabled|
If you have any questions or need some help, we would be happy to assist. Open a case at kaseya.zendesk.com .