For the configuration of the Boardgent Dashboard, it is necessary to create four groups of Active Directory; these groups will allow the configuration of the permissions to:
Read passwords
Override passwords
Export reports
Active Directory Groups
1. Group for Admin Password feature
People who belong to this group may:
View passwords for the local administrator account
Expire passwords for the local administrator account
2. Group for BIOS Password feature
People who belong to this group may:
View BIOS passwords for computers
Expiration of BIOS account passwords
See the order of the seasons
3. Group for BitLocker feature
People who belong to this group may:
View BitLocker security keys
4. Group to export reports
People who belong to this group may:
Export reports in any of the Boardgent features (Admin Password, BIOS, BitLocker)
Group Policy settings
Boardgent's policy for configuring Dashboard permissions is: Security Group Names.
When this policy is enabled, it is allowed to configure the names of the "previously created" groups in the available fields.
Examples of Use
Case 1
If a user is required to view the Admin Password and BIOS passwords, but cannot export reports, the user must belong to the following groups:
Admin Password Group
BIOS group
Case 2
If a user is required to view BIOS and BitLocker passwords, but not Admin Password, and additionally can export reports, this must belong to the following groups:
BIOS group
BitLocker group
Reports group
Case 3
If a user is required to export additional reports to belong to the group to export reports, the user must belong to the group of the characteristic from which they must export the report. For example, if you want to export BitLocker keys, the user must belong to the BitLocker group and the Reports group.
โ
Case 4
If a user requires all permissions, it is necessary that the user belongs to all Boardgent groups.
โ
