You can disable a user’s access to the Personal Management Utility as part of configuration. By default, the user has permission to change application definitions and predefined applications, passwords, and functionality. You can restrict this use through the iManager SSO plug-in or the Administrative Management Utility.
You have several options for restricting access by setting preferences at the user, Group Policy, container or OU level including:
If the SecureLogin icon is password protected, anyone who attempts to access the Personal Management Utility through the SecureLogin icon on the system tray is prompted to enter the user’s network password. This prevents anyone other than the user from viewing SecureLogin data. You can modify SecureLogin using the administration tools.