By default, the user has permission to change application definitions and predefined applications, passwords, and functionality.
You do this through the administrative management utilities.
This includes:
Full access to all administrative tools.
Access to selected administrative tools.
Hiding the SecureLogin icon on the notification area.
Hiding and password protecting the SecureLogin icon in the notification area.
If the SecureLogin icon is password protected, anyone attempting to access the Personal Management utility through the SecureLogin icon is prompted to provide the network password. This prevents non-authorized users from viewing SecureLogin data. However, the authorized user can use the administration tools to modify SecureLogin.
You can restrict access by setting preferences at the user, group policy, container, or organizational user (ou) level.