Credential caching, Randomize password, Logon time – Sony FIU-900 User Manual

Chapter 5: Using SecureSuite

SecureSuite XS Workstation Guide

21

Credential Caching

Credential caching is a feature that allows the credentials of the last successful
logon to a remote domain to be securely cached (stored) on a client computer.
This policy can be enabled at the system level, or set per user via the

SecureSuite User Manager

. If the client computer should become

disconnected from the network or if no authentication servers are available, the
last 10 users who successfully authenticated to the remote domain can perform
the same logon procedure and have the standard user desktop available (the user
will not be able to access the network). This is a convenient feature for those who
plan to travel with their workstation. Credentials uniquely identify a user within the
scope of a domain. Credential-cached logon compares submitted credentials
against the credentials that have been stored on the computer. You can configure
credential-caching policies through the

SecureSuite System Properties

dialog, discussed later in this manual. By default, the credential caching policies
are enabled. These policies will be available to remote domain users only. They
will not appear on local machines (stand-alone workstations).

Randomize Password

Password randomization is a powerful security feature that provides maximum
protection against password-based security attacks. This feature will automatically
change a user’s Windows password to a secure random password every time the
user authenticates. This prevents users from accessing SecureSuite protected
network resources from workstations that do not have SecureSuite installed. The
randomization process takes place without user knowledge or participation.

You can configure password randomization policies for all users and for

AND

users

through the

SecureSuite System Settings

dialog discussed later in this

manual. If password randomization is set as

User Defined

at the system level,

then you can also enable or disable password randomization for each individual
user via the

SecureSuite User Manager

. By default, password randomization

is disabled (user defined) for all users, enabled for

AND

users, and disabled for

each individual user.

Logon time

Placing your cursor over the SecureSuite icon in the system tray will display how
long the current user has been logged on to the system.

Figure 2: SecureSuite Logon Time