Actions available within KRMC Hosted include:
| Message | Send a notification message to be displayed on the device host’s computer. | |
| IP / Domain / MAC Control | Create a list of IP Ranges or Domains or MAC addresses that you will either allow or restrict your devices to access KRMC from. You can include multiple IP Ranges, Domains, or Mac addresses to the list. | |
| Enable Access Control | Check this box to enable IP/Domain/Mac control. | |
| Functionality | Select whether IP/Domain/Mac control will allow or deny certain IP ranges, Domains, or Mac addresses. | |
| Allow all Except (blacklist) | When selected, all devices will be allowed to access KRMC unless it is located under any of the IP ranges, Domains, or Mac addresses listed. | |
| Deny all Except (safelist) | When selected, only devices that are located under any of the IP ranges, Domains, or Mac addresses listed will be able to access KRMC. | |
| Control based | Select whether you want IP/Domain/Mac Control to be based on IP Range, Domain or MAC Address. | |
| New Values | Select whether you want the newly added IP Range, Domains, or Mac addresses to either append or overwrite the existing list of allowed or blocked IP Ranges/Domains/Mac addresses. | |
| Add IP Range, Add Domain, and Add MAC Address | Depending on whether control is based upon IP Range, Domain or MAC Address, this entry will be either ‘Add IP Range’, ‘Add Domain’, or ‘Add MAC Address’. | |
| IP Range | Enter the start and end of the IP range that you wish to allow or deny. | |
| Enable Device | Remotely enable a device that had been disabled by a ‘Disable Device’ remote action. | |
| Disable Device | Remotely disable a device. Administrator settings are not affected by this action. The device user will be unable to login to their device or access the device’s secure partition again until it is enabled by an ‘Enable Device’ remote action. | |
| Delete All Data and Disable Device | Delete all the data stored on the device, and then disable the device. Administrator settings and stored data are not affected by this action. The device user will be unable to login to their device or access the device’s secure partition again until it is enabled by an ‘Enable Device’ remote action. | |
| Change User Password | Change the device’s user password. | |
| New Password | Enter the new user password for the device. | |
| Confirm Password | Enter the new user password again to confirm the password. This password must match the password entered in the New Password field. | |
| Administrative Password | Enter the KRMC Administrative Password. | |
| User Must Change Password on Next Login | When selected, the user will be forced to change their password after their next login. | |
| Self-Service Password Management (SSPM) | Gives the Defender device user the ability to manually reset their Defender login password. In the event that the Defender login password is lost or forgotten, the user can reset their password without resetting the device and regain access to their data. If a device user forgets their password and self-service password management is enabled, all they need to do is click the ‘Forgot Password’ button at the Defender’s login window and a password reset code will be sent to their designated email ID. Once they enter this reset code, they will be able to setup a new login password and access their data again. | |
| Enable and Force | Enable the self-service password management feature on the drive and activate it immediately by requiring the user to provide an e-mail address where the password reset code can be sent. | |
| Enable but Defer | Enable the self-service password management feature on the drive but allow the user to provide their e-mail address at a later time. Note: Simply enabling self-service password management does not allow the device user to reset their password. SSPM must be activated by providing a valid e-mail address. | |
| Disable Password Reset | Disable the self-service password management feature. The “Forgot Password” option will not be available on the Defender login window. | |
| Reset for New User | This action is designed specifically for reprovisioning a managed Defender drive for a different end user. The Reset for New User action will delete all user data and contact information from the previous device owner, while retaining information critical to device management, i.e., Administrator Password, KRMC status, AV license info, proxy settings and access control restrictions. Note: A Reset for New User action can only be created for devices running KDM client version 4.0.9.4 and later. | |
| Enable / Disable USB to Cloud | This option allows you to enable or disable the USB to Cloud application on the Defender device. Note: This action can only be created for devices running KDM client version 5.6.5.4 and later. If USB to Cloud is enabled, you are then able to select which backup service you allow. Services that are compatible with USB to Cloud are as follows: Amazon S3, Baidu, Box, Dropbox, Google Drive, Mega, NAS (using WebDAV or DAS), OneDrive, OneDrive for Business, Sharefile by Citrix, Yandex Disk. | |
| Enable / Disable Onboard Browser | This option allows you to enable or disable the On-Board Browser (OBB) application on the Defender device. Note: This action can only be created for devices running KDM client version 5.6.5.4 and later. | |
| Enable / Disable Reset Autoscan Fingerprint | Gives the Defender Bio-Elite 30 drives the ability to use or not use the Autoscan feature on the drives. | |
| Enable Autoscan | When enabled, KDMBio only needs to be run once on a supported Windows PC or Mac to register at least one fingerprint. Afterwards, you will be able to access the secure storage partition using only a fingerprint scan. You will only need to run KDMBio to configure or manage EPP, KRMC, SSPM, or fingerprints. | |
| Disable Autoscan | When disabled, the device is running in standard mode. You will be required to run KDMBio to access the secure storage partition. Since KDMBio is always needed in this configuration, the drive will only work on a supported Windows PC or Mac. This is typically only recommended for devices managed using KRMC. | |
| Enable / Disable EPP | This option allows you to enable or disable the Bit Defender End Point Protection (EPP) application on the Defender device. Note: This action can only be created for devices running KDM client version 5.6.6.2 and later. If you Enable EPP, you are then able to determine how the real-time scan works. You have three options: | |
| Enable Real-Time Scan | Real-Time Scanning is enabled however the user scan disabled this at their choosing. | |
| Disable Real-Time Scan | Real-Time Scanning is disabled and the user is unable to enable it. | |
| Force Real-Time Scan | Real-Time Scanning is enabled and the user is unable to disable it. | |
| Enable / Disable File Audit | Provides the ability to use the File Audit feature. Note: File Auditing is only available with Premium KRMC Hosted accounts and on devices with KDM version of 5.6.7.5 or newer. | |
| Enable File Audit | When enabled, the Defender device will start sending information to the KRMC-Hosted account regarding the files stored on the device. This information can be seen on the File Audit page on KRMC. | |
| Disable File Audit | When disabled, no information on the files stored on the Defender device is sent to KRMC-Hosted. | |
| Full log Upload request File Audit | This action forces a full upload of all files on your Defender drives be sent to KRMC to be viewed with File Audit. Note: File Auditing is only available with Premium KRMC Hosted accounts and on devices with KDM version of 5.6.7.5 or newer. | |
| Panic Mode | A device operating in Panic Mode must be seen by the server in the designated time period. If the device is not seen by the KRMC server during this time, the device will be identified as lost and the next time it is accessed, a specified action will occur. The application will be able to be disabled, disabled and have all data removed, or have all data removed and the user will need to set the device up once again. Note: A Panic Mode action can only be created for devices running KDM client version 5.6.8.3 and later. | |
| Disable - data maintained | The device will be automatically disabled. All data and settings will remain and will need an enable action created for it prior to being able to be used once again. | |
| Disable and Delete all data | All device data is removed and the device reverts to the disabled state. An enable action will be required so the device can be used once again and the device will then need to be setup. | |
| Delete all data and revert to setup wizard | All device data is removed the device will need to be setup the next time the user attempts to use it. | |
| Panic Period | Defined period of time for the Panic Mode Setting. | |
For more information on KRMC Hosted, please refer to the User Manual located at HERE.
Comments
0 comments
Please sign in to leave a comment.