We’d need a lot more details on what you’re talking about.
Can you still access the BigFix Console or WebUI, and are the target computers still checking in?
By “blocked access”, do you mean the hardening policy has broken your Remote Desktop and/or SSH, or access to BigFix itself?
There are no “back doors” in BigFix itself, but if you’re talking about blocked RDP or SSH and you can still use BigFix, there should be ways to restore your other accesses. If you’ve broken BigFix communication but can still access RDP or SSH or some other protocol, you can fix the BigFix communication. If you’ve lost both types of access, you’ll either need physical access to the machines or another out-of-band management tool.
I can give tips and pointers on these, but will need a lot more detail about what’s working and what isn’t.
If you’ve lost all your “normal” accesses to the machines, some other methods to consider
- Do you have BigFix MDM deployed? Perhaps you can use MDM to reconfigure endpoints and restore access.
- Do you have any other MDM deployed?
- Do you have out-of-band management access like iLO, iDRAC, IPMI, AMT?
- Do you have an EDR (CrowdStrike, Carbon Black, etc.)? Maybe those can send commands?
- Do you have a centralized Antivirus (Symantec, McAfee, etc.)? Those can send commands
- Do you have VPN or NAC clients that allow sending actions from the server?
- Can you remotely access the machines with PSExec, Task Scheduler, PowerShell Remoting?