A unique feature of TermSecure is its “two layer” password security. Here is how it works…
Each ThinManager User is configured with the following items:
1) A ThinManager username and password. The ThinManager password includes optional strength settings like length, alphanumeric required, special characters required, and password life.
2) An associated Windows username and password. This password can be left blank in the ThinManager configuration to force a log on, passed through from the terminal or passed through from the ThinManager user.
3) Access groups - Permissives restricting access to terminals or terminal server groups and sessions
4) Terminal server groups which can provide user access to applications
ThinManager usernames and passwords are set up and managed from within ThinManager. Users gain access to ThinManager Ready terminal devices and terminal server groups by logging in at the terminal using a ThinManager username and password. Once logged into a terminal the user is given access to Microsoft Terminal Server groups and sessions as configured in ThinManager.
The Windows username and password associated with a ThinManager user is managed by the ThinManager administrator and passed through to terminal servers to start or reconnect to sessions after a ThinManager user login. Therefore the ThinManager user has no knowledge of the Windows username and password that is used to establish or reconnect to the Terminal Server sessions.
If the ThinManager user misplaces their username and password and it is used by an unauthorized party to gain access to the system, access will be limited to only those terminal server groups for which the ThinManager user is configured. This means that the access granted to terminal servers and sessions through unauthorized use of a ThinManager username and password can be limited to specific applications in a Windows environment. Using AppLink with MultiSession greatly enhances the security of ThinManager user sessions by limiting access to linked applications and disabling access to the Windows desktop. Also the misplaced username and password can be simply removed from the system without affecting any of the Windows accounts.
When used in conjunction with a proximity card the TermSecure feature provides greater protection against unauthorized use. ThinManager users can be set up to require both the physical card and a password rendering the card alone or password alone ineffective to unauthorized access.
This is known as access management, and it will only become more important in the future as workers become more mobile. Companies will need to spend more of their budgets to secure both physical and network access, and TermSecure helps with both. TermSecure will interface with new or existing security cards and readers to limit physical access to clients, and its ability to completely isolate the user from the network and Terminal Servers assures that only authorized users have access.
Read more about current security concerns in the two articles referenced below:
For more information on ACP Industrial Thin Client computers, please visit our web site at http://www.thinmanager.com
To sign up for the E-mail newsletter go here: ACP newsletter signup
For an archive of past newsletter articles go to: ACP Newsletter Archive