Access Configuration

Owned by Mirza Baig (Unlicensed)
Last updated: Sept 13, 2018
3 min read

A significant function of Epilog is its ability to be remote controlled. This facility has been incorporated to allow all the functions available in Epilog, to be accessible through a standard web browser. The Epilog service employs a custom designed web server to allow configuration through a browser, or via an automated custom designed tool. The parameters which may be set for remote control operation are discussed in detail below:

  • Restrict remote control of SNARE agent to certain hosts. This feature indicates whether to allow remote control of the Snare Agent. This option is also configurable at the time of installation. Enabling this option will allow the Snare Agent to be remote controlled from another machine via a web browser or the Snare Server's Agent Management Console. If the remote control feature is unselected, it may only be turned on by enabling the correct registry key on the hosted PC in which the Snare Agent has been installed.
  • IP Address allowed to remote control SNARE. Remote control actions may be limited to a given host. This host, entered as an IP address in this field, will only allow remote connections to be effected from the stated IP address. Note that access control based on source IP address is prone to spoofing, and should be considered as a security measure used in conjunction with other countermeasures.
  • Require a password for remote control? Indicate whether a password will be set so only authorised personnel may access the remote control functions.
  • Password to allow remote control of SNARE. A password may be set if Require a password for remote control? is selected. A password may be set so that only authorised individuals may access the remote control functions. If accessing the remote control functions through a browser or custom designed tool, note that the userid is 'snare', and the password is whatever has been set through this setting. This password is stored in an encrypted form in the registry, using the MD5 hashing algorithm.
  • Web Server Port. Normally, a web server operates on port 80. If this is the case, then a user need only type the address into the browser to access the site. The default Epilog web server port (6162) may be changed using this setting, if it conflicts with an established web server. However, care should be taken to note the new server port, as it will need to be placed in the URL (http://mysite.com:1234) needed to access the Epilog agent.
  • Web Server Protocol. Select from either a regular HTTP connection or a HTTPS connection to ensure all communications from the agent are securely encrypted. If no certificate is defined select the Security Certificates menu item to configure a certificate if required.

To save and set the changes to the above settings, and to ensure the registry has received the new configuration perform the following:

  1. Click on Change Configuration to save any changes to the registry.
  2. Click on the Apply Configuration & Restart Service menu item.

Alternatively, the service may also be restarted by selecting the restart service via the Windows services control panel.