2.3 Managing user accounts

If several administrators will be using JP1/IT Desktop Management 2, you can create a user account in JP1/IT Desktop Management 2 for each administrator.

You can set the following parameters for user accounts that define the range of operations the user can perform, and the scope of the information available to the user. By creating user accounts with the appropriate combinations of these parameters, you can ensure a proper division of responsibilities and effective internal controls among the administrators of a system.

Permission

Set permissions appropriate to the range of operations the user performs. For example, you might have a manager who only needs read-only access to information, a system administrator who manages devices and assets, and a system administrator who manages user accounts.

Task allocation

You can restrict permissions further by limiting users to certain tasks such as security management, asset management, or device management.

Administration scope

You can create user accounts in a manner that limits the information available to users at the department level. For example, users in the general affairs, sales, and research departments might have access to different information.

Manipulation of operation windows used for distribution using Remote Install Manager, such as Remote Install Manager and Packager, is allowed only for users who are given distribution management task allocation and system management authority in the user account settings.

The following figure shows an example of creating user accounts with separate parameters for each administrator.

Users with user management permission are able to add, edit, and delete user accounts.

Add and delete user accounts when changes are made to the users who use JP1/IT Desktop Management 2 in your organization. Edit user accounts when changes to the management structure require changes to account passwords or permissions. User account passwords must be changed regularly. When a password approaches its expiration date, only the owner of the account or an administrator with user management permission can change the password.

Tip

A user with user management permission can unlock user accounts and reset passwords when a user is locked out or forgets his or her password.

Organization of this section

• 2.3.1 Locking user accounts

• 2.3.2 Authentication methods for user accounts

• 2.3.3 User account permissions

• 2.3.4 Available operations by user account permission

• 2.3.5 Task allocations for user accounts

• 2.3.6 Available operations by task allocation

• 2.3.7 Administration scopes for user accounts

• 2.3.8 Differences in operation windows when administration scopes are assigned

To Page Top