Managed Policy Group (Host)
The following management policies for a host appear in the Managed policy group and pane. You can modify policy parameter values by double-clicking a policy to display the Setting Properties dialog.
Indicates whether host connections are authenticated using the Remote Control scalability server.
Default: True
Determines how the host computer authenticates user credentials when a request is made to connect using Remote Control.
If True, the host asks the manager to authenticate credentials using centrally managed user permissions. The manager keeps details of remote control users and their permissions on a central database that is maintained by the system administrator. The host computer also appears in the global address book (GAB) if the administrator has applied any user permissions to the groups to which the host belongs. Furthermore, the DSM Properties - Remote Control dialog does not show the Users tab because the local user is not allowed to administer users.
If False, the host authenticates user credentials using a local list of users and permissions. This list is maintained by the local user using the Users tab of the DSM Properties - Remote Control dialog and may contain both domain and local users. The host computer does not appear in the global address book because security is not controlled by the manager.
Default: True
Controls whether the host can use a local security provider to validate user connections if it cannot contact its domain manager. Typically, the manager performs validation of user names and passwords. If the host cannot contact its domain manager when a viewer wants to connect, the host can load the local "Unified" security provider to validate. By default, this permits anyone in the Administrators group to connect, or the "root" user on Linux/Mac OS X. This feature can be used with Enable security cache.
Note: In fail safe mode you must connect as an Administrator of the host computer, not with a local domain manager account or as a normal domain user (unless that user is in the Administrators group defined to the host computer).
Default: False
Controls whether the host can use the local security cache to validate user connections if it cannot contact its domain manager. Typically, the manager performs validation of user names and passwords. The user's permissions from successful validations are stored in a cache file so that if the host cannot contact its manager when a viewer wants to connect, it can look in the cache and see if the user is present. If so, the user can be validated against the domain controller and cached permissions.
Default: True
Indicates whether Wake-on-LAN (WOL) information should be registered in the global address book (GAB). If True, users of the Remote Control viewer can remotely power up computers that support WOL. If False, WOL is only available from the DSM Explorer.
Default: True
|
Copyright © 2013 CA.
All rights reserved.
|
|