Environment
Novell ZENworks 10 Configuration Management
Situation
When an administrative user without super admin rights or Remote Management rights uses the ZCC, the remote control options appear to be available.
Resolution
This is working as designed.
Rights are meant to control a remote operator from performing Remote Management operations using Rights mode of authentication only.
The Remote Management rights setting does not have any bearing on either the password mode of authentication or the permission. Rights are meant to control a remote operator from performing Remote Management operations using Rights mode of authentication only.
Nothing can prevent a remote operator from launching Remote Management operation using Password mode of authentication via the standalone Remote Management Viewer (nzrViewer.exe) outside the context of ZCC. Initiating a remote session through Password mode of authentication still requires the remote operator to know the password configured on the device, and that the policy allow password authentication.
Even if the remote operator has rights, he cannot supersede the managed device user's wish to not have his system controlled. That is the reason why the administrator enables the permission in the policy.