Password-protecting the client
|Article:HOWTO81235|||||Created: 2012-10-24|||||Updated: 2014-09-21|||||Article URL http://www.symantec.com/docs/HOWTO81235|
You can require the users to type a password when users try to do one of the following actions:
Open the client's user interface.
Stop the client.
The Network Access Control client can pass Enforcer authentication initially, while the client is running, and receive a normal network configuration and IP address. If the client later fails authentication, the Enforcer sends a message to the client. This failure causes the client to release and renew the IP address. However, if the end user stops the client on the client computer, the Enforcer is unable to enforce the release and renew. To ensure that the Enforcer can continue to quarantine or to block clients, you may want to restrict which users are allowed to stop a client. You can restrict users by requiring a password for the end user to stop the client.
Uninstall the client.
Import and export the security policy.
You can modify the password protection settings for any child group that does not inherit its settings from a parent.
To password-protect the client
In the console, click Clients.
Under Clients, select the group for which you want to set up password protection.
On the Policies tab, under Location-independent Policies and Settings, click Password Settings.
On the Password Settings tab, check any or all of the check boxes.
In the Password and Confirm password text boxes, type the same password.
The password is limited to 15 characters or less.
Article URL http://www.symantec.com/docs/HOWTO81235