Group policy settings, Defining manageable settings, Max retries – Lenovo ThinkVantage (Client Security Solution 8.21) User Manual

• Default user preferences

As described previously, computer and user policies are defined by the administrator. These settings can be
initialized through the XML configuration file or through a Group Policy in the Active Directory. Computer and
user preferences are set by the user on the client computer through options in the applications interface.
Default user preferences are initialized by the XML configuration script. Users do not change the values
directly. Changes made to these settings by a user will be updated in the user preferences.

Customers not using Active Directory can create a default set of policy settings to be deployed to client
systems. Administrators can modify XML configuration scripts and specify that they be processed during
the installation of the product.

Defining manageable settings

The following example shows settings in the Group Policy editor using the following hierarchy:

Computer Configuration>Administrative Templates>ThinkVantage Technologies>
Client Security Solution>Authentication Policies>Max Retries>
Password number of retries

The ADM files indicate where in the registry the settings will be reflected. These settings will be in the
following registry locations:

Computer policies:
HKLM\Software\Policies\Lenovo\Client Security Solution\
User policies:
HKCU\Software\Policies\Lenovo\Client Security Solution\
Default user policies:
HKLM\Software\Policies\Lenovo\Client Security Solution\User defaults
Computer preferences:
HKLM\Software\Lenovo\Client Security Solution\
User preferences:
HKCU\Software\Lenovo\Client Security Solution\
Default user preferences:
HKLM\Software\Lenovo\Client Security Solution\User defaults

Group Policy settings

The tables in this section provide policy settings for the Computer Configuration and the User Configuration
for Client Security Solution.

Max retries

The following table provides policy settings for Authentication policies, Max retries.

Table 18. Computer Configuration ➙ ThinkVantage ➙ Client Security Solution ➙ Authentication policies ➙
Max retries

Policy

Enabled Setting

Description

Password number of
retries

Maximum number
of retries is 20.

Controls the maximum number of times a user may try to authenticate
with Windows password before falling back to override policy.

Passphrase number of
retries

Maximum number
of retries is 20.

Controls the maximum number of times a user may try to authenticate
with Client Security passphrase before falling back to override policy.

Fingerprint number of
retries

Maximum number
of retries is 20.

Controls the maximum number of times a user may try to authenticate
with fingerprint before falling back to override policy.

Secure Mode

The following table provides policy settings for Authentication policies, Secure mode.

38

Client Security Solution 8.21Deployment Guide