Table10.ThinkVantage\ClientSecuritySolution\AuthenticationPolicies\PKCS#11Signature\CustomMode
FieldsCSS.ADM
Modiableeld
Required
FieldDescription
Controlswhetherpasswordorpassphraseisrequired.
Possiblevalues•Enabled
–Everytime
–Onceperlogon
•Disabled
•Notcongured
Settingsandpoliciesforthengerprintreaderauthentication
Enforcedngerprintbypassoption
Thengerprintbypassoptionenablesausertobypassthengerprintauthenticationanduseawindows
passwordtologon.TheusercanselectordeselectthisoptiononthePasswordManageruserinterface
whenaddinganewentry.
However,bydefault,thengerprintbypassisenabledevenifthisoptionisnotselected.Thisistoallowthe
usertologontoWindowswhenthengerprintsensorisnotfunctional.Todisabletheenforcedngerprint
bypassoption,editthefollowingregistrykey:
[HKEY_LOCAL_MACHINE\SOFTWARE\Lenovo\ClientSecuritySolution\CSSConguration]
"GinaDenyLogonDeviceNonEnrolled"=dword:00000001
Whentheregistrykeyissetasabove,theusercannotbypassngerprintauthenticationwhenthengerprint
sensorisnotworking.
Fingerprintswiperesult
Duringthengerprintauthentication,thebelowpolicycontrolsthedisplayofngerprintswiperesults.
HKLM\Lenovo\TVTCommon\ClientSecuritySolution\FPSwipeResult
•FPSwipeResult=0:Showallmessages.
•FPSwipeResult=1:Showfailuremessagesonly(defaultvalue).
•FPSwipeResult=2:Donotshowanymessages.
Command-linetools
ThinkVantageTechnologiesfeaturescanalsobeimplementedlocallyorremotelybycorporateIT
administratorsthroughthecommand-lineinterface.Congurationsettingscanbemaintainedthrough
remotetextlesettings.
ClientSecuritySolutionhasthefollowingcommand-linetools:
•“SecurityAdvisor”onpage35
•“ClientSecuritySolutionsetupwizard”onpage36
•“Deploymentleencryptordecrypttool”onpage36
•“Deploymentleprocessingtool”onpage37
•“TPMENABLE.EXE”onpage37
34ClientSecuritySolution8.3DeploymentGuide
Kommentare zu diesen Handbüchern