Why aren't remote control actions greyed out in ZCC when admin user doesn't have rights?

  • 7004918
  • 24-Nov-2009
  • 27-Apr-2012

Environment

Novell ZENworks 10 Configuration Management

Situation

When an administrative user without super admin rights or Remote Management rights uses the ZCC, the remote control options appear to be available.
 
 

Resolution

This is working as designed.
 
Rights are meant to control a remote operator from performing Remote Management operations using Rights mode of authentication only.
 
The Remote Management rights setting does not have any bearing on either the password mode of authentication or the permission.  Rights are meant to control a remote operator from performing Remote Management operations using Rights mode of authentication only. 
 
Nothing can prevent a remote operator from launching Remote Management operation using Password mode of authentication via the standalone Remote Management Viewer (nzrViewer.exe) outside the context of ZCC.   Initiating a remote session through Password mode of authentication still requires the remote operator to know the password configured on the device, and that the policy allow password authentication.
 
Even if the remote operator has rights, he cannot supersede the managed device user's wish to not have his system controlled.  That is the reason why the administrator enables the permission in the policy.