Service Options for Digital Fingerprints

Digital Fingerprints : Applying Digital Fingerprints : Service Options for Digital Fingerprints

To employ the digital fingerprinting technique, interaction is required between DeviceLock Services and at least one DeviceLock Enterprise Server. This is because the fingerprints database is on the server whereas rules for checking fingerprints are applied on client computers (see Fingerprints Matching for details).

There are service options that govern what server to be used to check fingerprints. To view these options in the details pane, select DeviceLock Service > Service Options > Digital Fingerprints in the console tree.

The following options are available:

• Use global DeviceLock Enterprise Server(s) settings - Check fingerprints using the same server(s) specified for other operations (such as collecting audit and shadow logs or policy management).

Important: Only the server(s) specified for the “Everyone” account will be used.

• DeviceLock Enterprise Server(s) - Use dedicated servers to check fingerprints.

In case of certificate-based authentication, where a certain DeviceLock certificate’s public key is installed for DeviceLock Service, the private key of that certificate must be installed on the server that is intended to check fingerprints (for instructions, see Server administrators and certificate). Otherwise, fingerprint-based rules have no effect (for more information, see What If Server’s Fingerprints Database Is Unavailable to Client?).