How to create and set Device Access Profiles
Hideez Enterprise Server – Creating and setting device access profiles
The administrator can configure separate access settings for each Hideez Key. Access settings can only be set via HES. Settings are grouped into profiles. The first profile - Default - is created during the installation of HES, the administrator adds the rest. Read about Default Profile settings.
To configure profiles, go to Hardware Vaults section, Vault Access Profiles tab.
To edit an existing one, you need to select a profile by clicking on it and then click Edit.
To create a new one, click the Create Profile.
To delete an existing one, you need to select a profile by clicking on it and then click Delete.
Approve action by clicking Delete.
For the created profile to work, it must be assigned to the device.
When an administrator changes profile settings, remote tasks are created to change these settings on each affected device. These tasks will be completed as soon as the device is connected.
Pairing - the first connection of the device to the workstation (Bluetooth pairing).
Connection - reconnect to the workstation (restore communication with the device after disconnecting the device in the application or after locking the workstation).
Storage access - opening an additional encryption channel (every time you want to use the credentials stored in the device’s memory, access to the storage on the device is requested).
For each of the three events (Pairing, Connection, Storage access), three types of confirmation are possible to enable this event: pressing a button on the device, entering the PIN code, server authorization.
PIN expiration timeout - time after which PIN re-entry will be requested (1 minute - 48 hours).
PIN length - PIN code length (4 - 8 characters).
PIN incorrect entry - number of unsuccessful PIN attempts (3 -10 attempts).
By default, all Employees have Default Profile with such parameters:
- For the pairing (first connection to the PC) Employee should press the button and enter PIN code. Also, HES should be available.
- Every 24 hours Employee should enter the PIN code.
- PIN code length - 4 digits.
- 10 attempts for entering PIN code.