Is the security of this scripting tool referenced anywhere? I don't see it int he B5200 guide's PDF. I'm curious how secure it would be to use on a regular basis.
One of the things I was thinking would be to have a tool that the support center could use to generate recovery codes without having to give them the full out console or have them use the somewhat kludge web based system (sorry McAfee!) -- but this would mean that they are sending their NT username and password over the wire it what could be, since it's not documented to the contrary, plain text.
Now you're on to something! I run a ColdFusion server that I can make COM calls with. Would I need the SB client installed on the server, or can I get away with just the EXE and those two supporting DLLs?
You'd need most of a client directory, but you don't need a client active, drivers, or any services - you can dump the graphics/locale directories but otherwise just copy the SafeBoot directory from a client and stick the DLL's in that. Don't forget to register sbadmcom.dll
We used the API to build our own functions for a web page as well. Most of it is for issuing user/machine codes (but we use returned info to deny certain machines/users... like machine-STOLEN or user accounts like "itsupport". We also use it to move/rename machines in the database.