all InfoSec news
SCCM Hierarchy Takeover with High Availability
Security Boulevard securityboulevard.com
TL;DR: SCCM sites configured to support high availability can be abused to compromise the entire hierarchy
I previously wrote about how targeting site systems hosting the SMS Provider role can be used to compromise a SCCM hierarchy. In that blog, I discussed high availability (HA) for the SMS Provider which is designed to support multiple configuration manager console sessions or to support managing SCCM if the SMS provider goes offline. Since then, my coworker Chris Thompson and I started researching …
availability blog can compromise configuration management cybersecurity hierarchy high high availability hosting microsoft role sbn news sccm sms support systems takeover targeting