4.6.1 User account considerations
You need to carefully consider JP1/IT Desktop Management 2 user assignments. Specifically, consider for whom you will create user accounts and which permissions you will assign to the created user accounts.
You can assign appropriate permissions to a user account according to the purpose of the administrator who will use the account. The following describe which permissions should be assigned for the purpose of operation.
-
To perform administrative operations by using JP1/IT Desktop Management 2:
Assign system administrator permission.
-
To add and edit a user account for JP1/IT Desktop Management 2:
Assign user management permission.
-
To view the managed information:
No permissions need to be assigned (view permission is assigned by default).
-
Assign tasks so as to limit the range of operations for JP1/IT Desktop Management 2 according to the tasks for which the administrators are responsible.
There are five types of tasks: security control, asset management, device management, distribution management, and system configuration management.
In addition to permissions, an administration scope can also be assigned to a user account to limit that user to manage information only in that scope. Assign an administration scope if you do not want a user to change information outside the administration scope or if you want to divide management tasks by administration scope. By thus dividing work responsibilities among administrators, you can ensure efficient management of devices and hardware assets in the organization.
- Tip
-
By creating multiple user accounts and assigning permissions according to the tasks of the users, you can ensure a proper division of responsibilities and effective internal controls among the administrators of a system.
Related Topics: