This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
AdrianJones
Beginner
Beginner
‎2018-04-26 11:53 AM

Unlock with SecurID PIN or Windows password GPO

Jump to solution

Agent for Windows 7.3.3

GPO "Unlock with SecurID PIN or Windows password"

 

2 questions:

 

1. Could you confirm what the time-out does exactly. Does it work on elapsed time since the User last authenticated with SecurID credentials or is it the elapsed time the User last unlocked the device ? Just trying to understand if User keeps locking and unlocking their device regularly when they would next get challenged for SecurID credentials.

 

2. What impact does putting device into Hibernate or Sleep mode have on this policy ?

Labels (1)
Labels
0 Likes
Reply
1 Solution

Accepted Solutions
EdwardDavis
Employee
Employee
‎2018-04-26 12:43 PM

Jump to solution

1) In agent 7.3.3 build 114 and up, you can choose either of these two:

 

session lock, using Microsoft SENS (system event notification) timer event when desktop was locked

-or-

time since passcode was last used on the system, a different timer than Microsoft SENS

 

below 7.3.3.114, you only have one option and it is time since desktop was locked (SENS)

 

2) hibernate and sleep...you'll need to test what this does to your setup. It may vary depending on a variety

of factors and policies on the system, but if there is any logoff event, timer cancels and passcode is needed. 

[I will venture to say it will need the full passcode]

View solution in original post

Reply
2 Replies
EdwardDavis
Employee
Employee
‎2018-04-26 12:43 PM

Jump to solution

1) In agent 7.3.3 build 114 and up, you can choose either of these two:

 

session lock, using Microsoft SENS (system event notification) timer event when desktop was locked

-or-

time since passcode was last used on the system, a different timer than Microsoft SENS

 

below 7.3.3.114, you only have one option and it is time since desktop was locked (SENS)

 

2) hibernate and sleep...you'll need to test what this does to your setup. It may vary depending on a variety

of factors and policies on the system, but if there is any logoff event, timer cancels and passcode is needed. 

[I will venture to say it will need the full passcode]

Reply
AdrianJones
Beginner
Beginner
In response to EdwardDavis
‎2018-04-27 06:48 AM

Jump to solution

Thanks for that reply - very useful.

 

Are there any more details available on how to choose which timer method to use from 7.3.3.114 onwards ?

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.