Chapter 7: Using the SafeWord 2008 Management Console
Managing users
145
•
Change existing SoftPINs:
allows SoftPINs be changed for a user.
Helpdesk staff will be able to field requests for SoftPIN changes.
•
Select
Reset attack lock
to allow a user account that has been attack
locked (locked from repeated unsuccessful authentication attempts) to be
cleared by helpdesk staff.
•
Select
Temporarily disable or enable users
to allow helpdesk staff to
temporarily disable or enable users. Helpdesk staff will be able to
temporarily disable a user if it is expected that this user will not be
authenticating for a known period of time. This feature is useful during a
user leave of absence.
•
Select
View audit logs
to allow helpdesk staff to view audit logs that show a
history of user authentication activity within SafeWord.
When you are finished, click
OK
.
Defining privileges for local administrators
Local administrators have considerable administrative authority. They are able
to oversee the user management of a subset of the SafeWord user database,
and they may be given the authority to create other local administrators with
equal or fewer privileges. Figure 91 displays privilege settings for local
administrators.
Figure 91:
Local
administrator privilege
settings
13
Ensure the
Local administrator
option is selected under Administrative
Level if this user will be given local administrator privileges. Then choose
from the following options:
–
User records READ-ONLY
allows the local administrator to only read a
user’s record. A local administrator would need
READ/WRITE
privileges
to create, modify, and delete users within his group hierarchy.