How to configure gateway access for windows admin center

Nmeumns 11 Reputation points
2021-11-08T10:32:24.39+00:00

Hello,

I installed the latest WAC edition (Version 2110 Build 1.3.2111.01001) on my jump server. The jump server is a domain joined Server2019 standard edition.
The WAC gateway url works fine and all, however I wish to manage/control who can access it's gateway URL (https://hostname.fqdn)

As of now, any domain user can enter the url and log on to it with their domain credentials.
I can see in settings under users there is a mentioning of defining groups to allow gateway access. However there is no option to add or modify any of these groups as the field is completely blank. This when I log on with an user admin account. When I log into the gateway url with a standard user account, no gateway access settings are visible at all.

I tried logging into the WAC from a remote machine through webbrowser as a domain admin, enterprise admin and as a local admin account (local admin account from jump server). I tried to reinstall it from scratch, tried different browsers but no success.
I can see the settings menu for access gateway, as I can see the title in the settings: "allowed groups" . But there is no button to "add" or anything in that sense

How is this possible? Seems like a bug or?

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,898 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,862 questions
{count} vote

2 answers

Sort by: Most helpful
  1. Clément BETACORNE 2,496 Reputation points
    2021-11-08T14:44:58.157+00:00

    Hello,

    I have the same behavior even after I enabled the RBAC part however one option can be to restrict the access via Firewall rule, the name of the rule is SmeInboundOpenException

    Regards,

    0 comments No comments

  2. Limitless Technology 39,796 Reputation points
    2021-11-10T11:25:14.657+00:00

    Hi there,

    Make sure you have administrator access for this.

    There are two roles for access to the Windows Admin Center gateway service:

    Gateway users can connect to the Windows Admin Center gateway service to manage servers through that gateway, but they can't change access permissions nor the authentication mechanism used to authenticate to the gateway.

    Gateway administrators can configure who gets access as well as how users authenticate to the gateway. Only gateway administrators can view and configure the Access settings in Windows Admin Center. Local administrators on the gateway machine are always administrators of the Windows Admin Center gateway service.

    https://learn.microsoft.com/en-us/windows-server/manage/windows-admin-center/configure/user-access-control

    -------------------------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer--


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.