To select how and when users are allowed to log on to Security Center, you can customize user logon options.
What you should know
Procedure
- From the Config Tool homepage, click Options > General.
-
To force users to log on using Windows credentials, set the Use Windows
credentials option to Always.
For this option to work, the users of this workstation must be imported from an Active Directory.
-
To restrict the access of all users to a specific Directory, select the
Force Directory to option and enter the name of the
Directory.
When this option is enabled, users cannot choose which Directory they connect to. Also, the Directory field is not displayed in the Logon window. However, load balancing can automatically redirect users to another Directory.NOTE: If the Directory name is entered incorrectly, users cannot connect the next time they attempt to log on.Tip: If the Use Windows credentials option is set to Always or the Force Directory to option is selected, the Directory, Username, and Password fields display predefined values. To clear these fields, hold Ctrl+Shift and click Log on.
-
To bypass Directory load balancing, select the Disable Directory
redirection option.
This setting prevents users from being automatically redirected to another server when logging on. For this option to work, you must configure first Directory load balancing.
- Click Save.
-
To limit the number of workstations a user can log on to simultaneously, do the
following:
- Open the User management task.
- Select the user whose settings you want to configure, and click the Advanced tab.
- Turn on the Limit concurrent logons option, and enter the number of workstations.
-
To select when a user can log on, do the following:
- Under the User logon schedule section, click Add an item ().
- Select a schedule.
- Click Select.
If you select multiple schedules, the schedule conflict rules apply. When two schedules with the same priority level overlap, the blocking schedule has priority over the allowing schedule. -
To lock the Security Center session of a user after a period of inactivity, use of
the following options:
- Auto lock
- Turn this option on to lock the user out of their Config Tool or Security
Desk session. Open tasks remain visible, however the user must re-enter
their password to resume their session. This requirement can be inherited
from a parent user group. Set Inherit from parent to
Override to change this setting.NOTE: If the user is authenticated through ADFS with passive authentication, the user is logged off, and their current session is closed instead of being locked.
- Auto disconnect
- Turn this option on to log off the user from their Config Tool and Security Desk sessions, and close all tasks. This requirement can be inherited from a parent user group. Set Inherit from parent to Override to change this setting.
Tip: If the Auto lock and Auto disconnect options are both turned on, the set period of inactivity for auto disconnect should be greater than the set period of inactivity for auto lock. - Click Apply.
- To require the user to log on to Security Center with a logon supervisor, open the User management task, select the user to be the supervisor, and click the Advanced tab.
- In the Logon supervisor of section, click Add an item (), select the user to be supervised, and click OK.
- Click Apply.