Product guide

ManualsBrandsMcafee ManualsOtherFIREWALL 2.1-GETTING STARTED

101

102

103

104

105

106

107

108

109

110

Type the Intel

MEBX password, then retype it to confirm.

Select Show Password to see the password as you type. Password confirmation is not required with

this option.

This step can be used only for a remote configuration template.

Select Use generated random password to use a randomly generated digest password or select set

password, type a digest password, then retype it to confirm.

Select Show Password to see the password as you type. Password confirmation is not required with

this option.

The password must match the Intel

AMT credentials entered in Server Settings.

(Optional) Select Integrate with Active Directory, then browse to select the Active Directory

Organization Units.

In AMT User accounts and rights, perform one of these steps:

• For Digest account, click New Digest User, type user name, type password, retype password (or

select Show Password), then select the required access right for the use:

• Administrator — Provides PT Administration rights, which allows the user to access all Intel

AMT features. A PT Administrator manages security control data such as Access Control

Lists, Kerberos parameters, Transport Layer Security, Configuration parameters,

power-saving options, and power packages. Also this user has access to all realms.

If a PT Administrator wants to run configurator to perform host-based configuration, the

Access Type must be selected as Local or Both.

• Help Desk — Provides these access rights:

• Hardware Asset — To retrieve information about the hardware inventory of the Intel

AMT

system.

• Storage — To configure, and write to and read from non-volatile user storage.

• General Info — To retrieve general setting and status information. With this interface, it is

possible to give a user permission to read parameters related to other interfaces

without giving permission to change the parameters.

• Endpoint Access Control — To retrieve settings associated with NAC/NAP posture.

• Event Log Reader — To allow definition of a user with permissions only to read the Intel

AMT system log.

• User Access Control — To group ACL management commands into a separate realm to

enable users to manage their own passwords without requiring administrator rights.

• Remote Power Control — Provides these access rights:

• Redirection — To enable and disable the redirection capability and retrieves the

redirection log.

• Remote Control — To enable powering up a system or shutting it down remotely. Used

with the Redirection capability to boot remotely.

• General Info — To retrieve general setting and status information. With this interface, it is

possible to give a user permission to read parameters related to other interfaces

without giving permission to change the parameters.

• (Optional) To modify a saved digest account, select it, then click Edit.

Managing your Intel AMT systems

Create the Profile Manager policies

104

McAfee ePO Deep Command 2.1.0 Product Guide