Account Lockout and Device Lock Actions

Some policies have settings to lock out a user account or to lock a device based on certain criteria. Account lockout and device lock actions affect the Endpoint Encryption device whether or not the agent synchronizes policies with PolicyServer. For example, if the Endpoint Encryption agent does not communicate with PolicyServer for a certain period of time, the Endpoint Encryption agent automatically locks the Endpoint Encryption device. Use the tables below to understand the actions available for the account lockout and device lock actions.

Table 1. Account Lockout Actions

Action

Description

Remote authentication

Users cannot log on to the Endpoint Encryption device until after Technical Support provides remote authentication assistance.

Erase

All data is erased the next time that the agent synchronizes policies.

Note:

Account lockout actions take effect when the Endpoint Encryption agent does not communicate with PolicyServer for a certain period of time (set by policy).

Table 2. Device Lock Actions

Action

Description

Erase

All data is erased the next time that the Endpoint Encryption agent synchronizes policies.

Remote authentication

Users cannot log on to Endpoint Encryption devices until after Technical Support provides remote authentication assistance.

Time delay

Users cannot log on to Endpoint Encryption devices for a specified time duration.

Note:

Device lock actions take effect when the Endpoint Encryption user has too many unsuccessful logon attempts to that Endpoint Encryption device (set by policy).