For the configuration of the Boardgent Dashboard, it is necessary to create four groups of Active Directory; these groups will allow the configuration of the permissions to:

  • Read passwords

  • Override passwords

  • Export reports

Active Directory Groups

1. Group for Admin Password feature

People who belong to this group may:

  • View passwords for the local administrator account

  • Expire passwords for the local administrator account

2. Group for BIOS Password feature

People who belong to this group may:

  • View BIOS passwords for computers

  • Expiration of BIOS account passwords

  • See the order of the seasons

3. Group for BitLocker feature

People who belong to this group may:

  • View BitLocker security keys

4. Group to export reports

People who belong to this group may:

  • Export reports in any of the Boardgent features (Admin Password, BIOS, BitLocker)

Group Policy settings

Boardgent's policy for configuring Dashboard permissions is: Security Group Names.

When this policy is enabled, it is allowed to configure the names of the "previously created" groups in the available fields.

Examples of Use

Case 1

If a user is required to view the Admin Password and BIOS passwords, but cannot export reports, the user must belong to the following groups:

  • Admin Password Group

  • BIOS group

Case 2

If a user is required to view BIOS and BitLocker passwords, but not Admin Password, and additionally can export reports, this must belong to the following groups:

  • BIOS group

  • BitLocker group

  • Reports group

Case 3

If a user is required to export additional reports to belong to the group to export reports, the user must belong to the group of the characteristic from which they must export the report. For example, if you want to export BitLocker keys, the user must belong to the BitLocker group and the Reports group.

Case 4

If a user requires all permissions, it is necessary that the user belongs to all Boardgent groups.

Did this answer your question?