· Restrict access to Windows to certain users (permanent or temporary),
optionally controlling the days of the week and the time of the day the user
is allowed to logon and use the system.
· Keep a log or track of all the users making use of the system, including
the duration of the working sessions and failed logon attempts.
· Select the files (databases, documents, applications, images, etc.)
to which every user will have some or no access.
· Make certain files (databases, images, documents, etc.) being processed
only by one or several well-defined applications, guaranteeing that they cannot
be altered, copied, moved or deleted, otherwise.
· Control the execution access over certain applications, such as:
Internet browsers, e-mail programs, games, word processors, and so on.
· Protect the integrity and well functioning of the system, keeping
key files, such as: Config.sys, Autoexec.bat, Executables, Dynamic-link libraries,
Configuration files, Driver, System folders, etc, from being altered or removed.
· Audit the execution of certain operations over both: free-access
and protected files, producing a very precise report including: the full file
name and path, application used to perform the action, date/time of the event
and result of the operation.
· Establish certain user-level restrictions or policies in the system,
such as: disable some controls and operations, hide either totally or partially
the network neighborhood, disable the registry editing tools, deny the access
to some or all applets in Control Panel, protect the active Desktop, etc.
· Completely control the remote access to the system, sharing specific
files and denying or allowing certain operations on them.
· Disable and/or control the system operation in MS-DOS mode.
