Accessing security settings
- Right-click the Host icon in the system tray and select Settings for Host:
- Click Settings for host and select Security from the menu:
In the main security settings window you specify exactly how you want to access this Host. There are two authorization methods available — Remote Utilities own security and Windows security.
- Remote Utilities security – use Remote Utilities own authorization method (default choice)
- WinNT security – use Windows or Active Directory account credentials to connect to this Host
- Permissions – click to invoke Windows "Permissions" dialog, select users or user groups and set access permissions (see Setting Windows security permissions)
For security reasons, there are no technical, blank or default passwords. The only way to remotely access a Host is by knowing access credentials — either a single password, or username and password, whatever is used.
If you have Remote Utilities security selected as your authorization method but you didn't set the master password, you will NOT be able to connect to this Host. Make sure that you set your access password either when prompted during installation, or immediately after the installation.
Users and access control
If you selected Remote Utilities security as your authorization method and set the master password, you can always access your Host with that password. However, you can create additional users and set permissions for them. Each user will have a login and password and an associated set of permissions.
To create a user:
- In the main security settings window, click Users and access control link:
- Click Add and enter a user name and password.
- (Optional) Enable the Ask user permission option for this user if necessary.
- Click OK. The newly-created user will appear in the user list:
- Set access permissions for the selected user. In this example the user "John" is allowed to connect to this Host using the View Only and File Transfer connection modes. Other modes will not be available for this user.
Permissions for individual users can be overridden by global permissions set on the Modes tab.
- Click OK to save the settings.
Setting Windows security permissions
Instead of using the Remote Utilities default authorization method, you can utilize existing Windows and/or Active Directory accounts to authorize on this Host.
- In the main security settings window, select the WinNT security radio button and click Permissions:
- Click Add...
- Select Windows accounts which you want to grant or deny access to the Host and click OK.
- Select an account in the list and set permissions for this account below.
- Click OK to save the settings.
Click the Advanced button to access additional security settings.
Use the Confirmation tab to enable the Ask user permission option.
Restrict access to this Host for a specific IP address or IP address range.
- Allow everyone, except – add an IP address or range to the white list
- Deny everyone, except – add an IP address or range to the black list
- Edit – click to specify an IP address or a range
Host authority tab
In the Host authority tab you can set a shared secret that provides the means of verifying identity of the Host.
A shared secret is an alphanumeric code that you can generate on the Host and then add to the corresponding Viewer connection properties. Every time a remote session is about to start, Remote Utilities will check the shared secrets on both ends. If they are not identical, the connection will be refused.
Use the Modes tab to globally allow or deny specific connection modes when connecting to this Host.