Lenovo ThinkVantage (Hardware Password Manager Deployment Instrukcja Użytkownika Pobierz pdf (Strona 20)

ThistablistsanyRemoveUseractionsthathavebeenperformedontheuser,includingthenameofthe

devicefromwhichtheuserwasremovedandthedateandtimeofthelaststatuschange.

Removingauser’saccesstoaHardwarePasswordManagerdevice

AfterauserhasbeenenrolledonaHardwarePasswordManagerdevice,youcanremovethatenrollment

iftheusershouldnolongerhaveaccesstothedevice.Toremoveauser,createaremoteactionthatis

appliedtoeachdeviceyouspecify.ThenexttimewhenthedeviceisconnectedtotheHardwarePassword

Managerservertoupdateitspolicy,theuserwillberemovedfromthelistofusersforthatdevice.

ToremoveauserfromaHardwarePasswordManagerdevice:

1.ClickHPMEnrolledUsersinthetoolbox(orclickTools➙ThinkVantageHardwarePassword

Manager➙HPMEnrolledUsers).

2.Intheuserlist,selecttheuser(s).

3.ClickRevokeuseronthetoolbar.

4.IntheCreateRemoteActiondialogbox,clearthecheckboxforoneormoredevicesfromwhich

youwanttoremovetheuser.

5.ClickOK.

ManagingHardwarePasswordManagergroups

HardwarePasswordManagergroupslinkusergroups(asdenedintheLDAPserver)withHardware

PasswordManagerdevices.HardwarePasswordManagergroupsareusefulbecausetheyallowmultiple

userstoaccessoneormoredeviceswithoutindividuallyenrollingeachuseroneachdevice.Whena

deviceisaddedtoagroup,allmembersofthatgrouphavetheaccesstothedeviceandcanusean

intranetaccounttologintothedevice.

WhenyouopentheHPMGroupstool,groupsarelistedintheLDAPtreeview.Eachgroupiscreatedonyour

LDAPserver;youcannotcreateagroupinThinkManagementConsole.However,youcaneditgroups(dene

thegrouprole)anddragdevicesintogroupstoassociatethosedeviceswiththemembersofthegroups.

Intranetaccountgroupsaredistinguishedbytheroledenedfortheusersinthegroup:

•User:anenduserofaHardwarePasswordManagerdevice.

•ServiceTech:anITtechnician,authorizedwithlimitedaccesstothedeviceforservicing.Accesscanbe

limitedtoatimeframe(duration),orthetechniciancanbeauthorizedwithacertainnumberoflogins.

•Administrator:anadministrativeuserauthorizedtoaccessdevices.

Forexample,allmembersofagroupthatisdenedwiththeServiceTechrolecanlogintodevicesinthe

groupforaspeciednumberoftimes.Iftheroleisdenedsotheusercanonlylogintothedevicetwo

times,accesstothedeviceexpiresfortheuserafterthesecondlogin.

ToeditaHardwarePasswordManagergroup:

1.ClickHPMGroupsinthetoolbox(orclickT ools➙ThinkVantageHardwarePasswordManager➙

HPMGroups).

2.IntheLDAPtreeview,clickagroupnameandclickEditIntranetAccountGrouponthetoolbar.Most

itemsintheEditIntranetAccountGroupdialogboxarenoteditable.Y oucanselecttheroleforthe

group;ifyouselectServiceTech,youcanlimittheaccesstoHardwarePasswordManagerdevices.

3.Selecttherolefromthecombobox.

4.SelectWithexpirationifyouwanttolimittheaccesstothedeviceforaperiodoftimeoraspecic

numberoflogins.(ThisappliesonlytoServiceTechusers.)

12HardwarePasswordManagerDeploymentGuide

1 2 ... 15 16 17 18 19 20 21 22 23 24 25 ... 59 60

Brak uwag

Lenovo ThinkVantage (Hardware Password Manager Deployment Instrukcja Użytkownika Strona 20