Temporary Access

EndPoint ControlService used by GFI OneGuard to control access to devices. enables administrators to grant temporary accessFeature that allows temporary access to devices blocked by an EndPoint Control policy. to users. The Temporary Access feature allows time-limited access to peripherals like a USB or CD/DVD blocked by an EndPoint Control policy.

This feature can be used to give flexibility and manage exceptions without compromising security. For example, when a guest room that provides limited access to external clients needs to be used to hold a short conference.

When temporary access is granted, permissions and settings in the protection policy applicable to the target computer are temporarily overridden by the rules of the temporary access.

There is not a standard procedure for administrator and user to exchange temporary access request and the unlock code. An email or any other communication means available in your organization can be used. The administrator should advise network users the best way to exchange the request and code with security.

The Temporary Access is granted for a limited time and is valid only during the time specified in the Temporary Access Settings.

The request for temporary access is composed of three steps:

1. Requesting temporary access to a protected device.
2. Granting temporary access to a protected device.
3. Entering the Access code into the device.

Step 1: Requesting temporary access to a protected device

The first step is to obtain a temporary access code from the device:

1. From the computer tray, right-click the GFI OneGuard agentA GFI OneGuard component that runs as a background service on target devices and handles the deployment of patches, service packs and software updates. icon .
2. Click EndPoint Control Temporary Access.

Temporary Access request form

3. Copy the Request code string and send it to the administrator together with the machine name.

Step 2: Granting temporary access to a protected device

Once the administrator receives the request for temporary access, the next step is to grant the access from the GFI OneGuard platform:

1. Login to the GFI OneGuard PlatformThe main component of GFI OneGuard that connects all the services offered by the product and the database that stores all collected information..
2. Go to DashboardA graphical representation that indicates the status of various operations that might be currently active, or that are scheduled. > EndPoint Control.
3. Click Grant Temporary Access.

Grant Temporary Access window.

4. Paste the string sent by the user under the Request Code textbox and click Check.
5. The Device Name should appear. Click Next.
6. Enter the number of minutes to grant access for under the Unlock the usage of device for:
7. Select the start and end date and time that the request is valid under the From: and To: fields.
8. Check which categories have allowed access. Click Next.
9. Copy the Unlock Code and send to the user. Click Finish.

Step 3: Entering the Unlock Code into the device

Once the administrator sends back the Unlock code, insert it into the GFI EndPoint Control Temporary Access windows.

To insert the unlock code:

1. From the computer tray, right-click the GFI OneGuard agent icon .
2. Click EndPoint Control Temporary Access.

Unlock code inserted into the Temporary Access window

3. Insert the code sent by the administrator under Unlock code.
4. Click Unlock.