Managing Temporary Changes to Users Access Control Policy

The release of UserLock 8.5 strengthens user access control policy by enabling administrators to securely manage temporary changes to users’ network access rights.

temporary-access-control-windows-active-directory-network

Temporary network access rights

To secure sensitive information, an organization may need to restrict the amount of time employees, contractors or external partners can access certain systems.

Users should be provided with access rights to fully perform their tasks, but not for more time than is necessary. IT administrators can easily makes these changes in access restrictions but often forgot to revoke or remove access when no longer required. By leaving access open to users once they have finished their temporary assignments, the organization leaves a window open for a security breach to occur.

Minimize the risk of a breach from out-of-date access rights

Temporary access control policies can help minimize that window and reduce the risk of a breach.

temporary network access rules

With UserLock 8.5, administrators can easily set temporary access rules for a user, user group or organizational unit. The rules have the same access restriction options as a permanent account, but for a time period that the IT administrator deems appropriate for the user.

IT administrators can change the number and type of authorized sessions (including Wi-Fi, VPN and IIS session control), the location where a user may log in to the network, the hours or day that users can access systems or a temporary adjustment to an automatic logout time for working long hours. The system automatically activates the temporary changes, and automatically deactivates the changes once the user exceeds the defined time period.

The organization now has the ability to increase or reduce access restrictions normally in force for one or more users, without having to edit or remove existing original rules, and then return to the original rules automatically after the exception period.

To further protect access to an enterprise network, administrators can use UserLock’s temporary accounts to set a network connection ban for any employee when on vacation.

Securely manage all users’ network access with UserLock

These updates to UserLock help to protect company data while freeing up time for administrators, leaving them secure in the knowledge that no access modifications are left beyond their immediate need. UserLock continues to ensure everyone has sufficient access rights to fully perform their tasks without restriction, but no more.

Learn more about UserLock

Learn more about UserLock’s granular access control rules 

Download a fully functional 30 Day Trial Version of UserLock 

To upgrade to UserLock 8.5, just download the evaluation version from the site and follow the upgrade procedure.

Share this post :

Avatar

Chris Bunn is the Directeur Général Adjoint of IS Decisions, a global cybersecurity software company, specializing in access management and multi-factor authentication for Microsoft Active Directory environments and the cloud.

Secured By miniOrange