Remote Help Permissions

Remote HelpClosed Users can be denied access to their Full Disk Encryption-protected computers or Media Encryption & Port Protection-protected devices for many different reasons. Remote Help can help users in these types of situations. The user contacts the Help Desk or specified administrator and follows the recovery procedure. lets users access their Full Disk EncryptionClosed A component on Endpoint Security Windows clients. This component combines Pre-boot protection, boot authentication, and strong encryption to make sure that only authorized users are given access to information stored on desktops and laptops. Acronym: FDE. protected computers if they are locked out. The user calls the designated Endpoint Security administrator and does the Remote Help procedure.

There are two types of Full Disk Encryption Remote Help:

  • One Time Login - One Time Login allows access as an assumed identity for one session, without resetting the password.

    If users lose their Smart Cards, they must use this option.

  • Remote password change - This option is for users who use fixed passwords and forgot them.

For devices protected by Media Encryption & Port ProtectionClosed A component of the Endpoint Security client that protects data stored on computers by encrypting removable media devices and allowing tight control over computers' ports (USB, Bluetooth, and so on). Acronym. MEPP. policies, only remote password change is available.

To let users work with Remote Help:

  1. Go to the Policy view > Data Protection > OneCheck > Remote Help

  2. Select the allowed type(s) of Remote Help:

    Option

    Description

    Allow account to receive remote password change help

    Let users get help from an administrator to reset the account password (for example, if the user forgets the password).

    Allow account to receive One-Time Logon help

    Let the user get help from an administrator to log on, one time.

    One-time logon is for users who have lost their Smart Card.

    It is also useful if the user made too many failed attempts but does not want to change the password.