HP Pro 3420 HP ProtectTools Security Software,Version 6.0 User Guide - Page 66

5. Set the JITA period to the required time. 6. Click the Extendable check box. 7. Click the Apply button. The selected user can now login, authenticate to Security Manager and access the device. One minute before the JITA period is about to expire, the user will be prompted to extend their JITA period. Disabling a JITA for a user or group Administrators can disable a users or group access to devices using just-in-time authentication. 1. In the left pane of HP ProtectTools Administrative Console, click Device Access Manager, and then click JITA configuration. 2. From the devices drop-down menu, select either removable media or DVD/CD-ROM drives. 3. Select the User whose JITA you wish to disable. 4. Click the Enabled check box to clear it. 5. Click the Apply button. Now when the user logs in and attempts to access the device they will be denied access. Advanced Settings The Advanced Setting page provides the following functionality: ● Management of the Device Administrators group ● Management of drive letters to which the Device Access Manager never denies access. The Device Administrators group is used to exclude trusted users (trusted in terms of device access) from the restrictions imposed by a Device Access Manager policy. Suitable users are likely to include the system Administrators. The Advanced Settings view also enables the Administrator to configure a list of drive letters to which Device Access Manager will not restrict access for any user. In order to configure the list of drive letters, the Device Access Manager background services need to be running. The easiest way to start these services is to apply a Simple Configuration policy, such as denying all non Device Administrators access to removable media. 56 Chapter 9 Device Access Manager for HP ProtectTools ENWW