Managing Offline Security Settings for Devices

DeviceLock Security Policies (Offline Profile) : Managing Offline Security Policies for Devices : Managing Offline Security Settings for Devices

For details on the Security Settings feature, see Security Settings (Regular Profile).

Offline Security Settings can have one of the following states:

•Not Configured - Security Settings are not defined. This is the default state.

•Enabled - Security Settings are defined to enable audit and access control for the specified device classes.

•Disabled - Security Settings are defined to disable audit and access control for the specified device classes.

•Use Regular - The inheritance of offline Security Settings is blocked and regular Security Settings are enforced. Offline DeviceLock Service settings can have this state only in DeviceLock Service Settings Editor or DeviceLock Group Policy Manager.

The enforcement of regular Security Settings is helpful when using Group Policy or DeviceLock Service settings files (.dls) to deploy DeviceLock policies throughout the network as this kind of enforcement can be used to prevent offline Security Settings inherited from a higher level from being applied to a specific group of client computers at a lower level.

For more information on the enforcement of regular Security Settings, see Removing offline Security Settings.

Managing offline Security Settings involves the following tasks:

• Defining and changing offline Security Settings

• Undefining offline Security Settings

• Removing offline Security Settings