We have the SC server on our DMZ and authenticate towards the AD (private network). Today its possible to try to brute force the loginpage on the SC-admin and we do not want that to happen.

To restrict this we set "RestrictToIPs" in web.config and only allow internal IP's towards the Host.asp Administration.aspx and Login.aspx

We do not allow users connecting from the internet to use the admin-page due to this... hope that we can see some improvements. :)

It's allready possible... :)

Use a custom property (in this case no 4) and then add a SC-username in that property on a machine... then you can create a group like with this query:

Host = $USERNAME OR CustomProperty4 LIKE '*' + $USERNAME + '*'