SEE Inheriting
BlueZone’s Lock Settings below.|
Administering BlueZone |
Chapter 6 |
BlueZone provides a Feature Locking capability that allows the BlueZone Administrator to distribute a pre-configured version of BlueZone in such a way as to prevent End Users from making changes to some or all of BlueZone's features. BlueZone Feature Locking is controlled by the SETUP.INI file.
In addition, the BlueZone Administrator can configure the BlueZone Secure FTP client to "inherit" certain BlueZone lock values and can also prevent End Users from executing certain FTP commands.
The following tables contain the values needed to control BlueZone Locking:
Using the BlueZone SETUP.INI file to lock BlueZone features is the easiest method, and is recommended unless you are performing an automated installation in which case, setting the lock values in the Windows Registry will be required.
To set the BlueZone configuration lock in the SETUP.INI file, the Lock= value is set to the sum of the features to be locked. When BlueZone is installed, it reads the Lock= value from SETUP.INI, and prevents the End User from making any changes by graying the OK buttons for those locked features.
The Lock section of the SETUP.INI file can be found toward the end of the [BZSetup] section, which is the first section of the file. Use Notepad or other text editor, to edit and save the values in the SETUP.INI file.
The following shows the Lock section (with default values) of the SETUP.INI file:
Lock=0
LockFTP=0
LockTelnet=0
FontLock=No
ShowLockedDialogs=Yes
DisableAppendToClipboard=No
To lock a feature of the BlueZone emulator, take a look at the BlueZone Feature Lock Table and locate the desired feature or features that you wish to lock.
To lock all the features listed in the table enter a value of -1 as shown here in red.
Lock=-1
LockFTP=0
LockTelnet=0
To lock a single feature, simply enter the value of the desired feature in the Lock= value.
For example, if you want to lock the Display configuration settings, you add the KDISPLAYLOCK value of 16 as shown here in red:
Lock=16
LockFTP=0
LockTelnet=0
To lock multiple features, add the values of the desired features together and enter that sum in the Lock= value.
For example, if you want to lock the Translate Tables and Keyboard configuration settings, you add the KEYBOARDLOCK value of 8 and the TRANSLATELOCK value of 512 together for a total of 520 as shown here in red:
Lock=520
LockFTP=0
LockTelnet=0
BlueZone Secure FTP configuration locking is accomplished in exactly the same way as with the BlueZone emulator locking feature except that you enter the desired value next to the LockFTP= entry.
SEE Inheriting
BlueZone’s Lock Settings below.
Refer to the BlueZone Secure FTP Lock Table, you will see that there are two aspects to locking BlueZone Secure FTP.
The ability to lock (or block) FTP commands which are shown in standard black type
The ability to lock (or block) BlueZone Secure FTP features which is shown in blue bold type
Each command or feature listed in the table can be locked individually or if you want to lock more than one item, simply add the values of the items together and place that value in the LockFTP= setting.
For example, if you want to prevent your end users from being able to create a new directory and prevent them from changing the BlueZone Secure FTP host configuration settings, add the Block Make Directory Command value of 32 and the Lock Configuration Settings value of 8 together for a total of 40. Replace the 0 value with 40 as shown here in red:
Lock=0
LockFTP=40
SEE The
BlueZone Secure FTP Lock Table
located in Appendix D for Lock
values
By default, BlueZone Secure FTP does not inherit any of the BlueZone Lock Settings. As an option, BlueZone Secure FTP can inherit three of BlueZone’s Lock Settings. These common settings are shown in green in the “BlueZone Feature Lock Table”.
If you want BlueZone Secure FTP to inherit these lock settings from BlueZone, place 1024 in the LockFTP= setting as shown here in red:
Lock=0
LockFTP=1024
If you want any additional BlueZone Secure FTP lock options, simply add those values to 1024, and place that sum in the LockFTP= setting.