Permissions View (protocols)

There is a list of protocols for which you can define user-level permissions.

DeviceLock provides control over the following protocols and Web applications:

• File Sharing - controls the exchange of information via Web-based file storage, sharing and synchronization services such as Amazon Simple Storage Service (Amazon S3), Dropbox, Google Docs/Google Drive, Rusfolder (Rusfolder.com, former iFolder.ru), Yandex.Narod (Narod.ru), RapidShare, SkyDrive, Yandex.Disk.

Both non-SSL and SSL connections are supported.

• FTP (File Transfer Protocol) - the Internet standard protocol for transferring files between computers. 

Both active-mode and passive-mode FTP connections are supported. FTPS (FTP over SSL) is also supported. Both implicit and explicit FTPS connections are supported.

• HTTP (Hypertext Transfer Protocol) - an application-level client/server protocol used to transfer information over the World Wide Web. 

HTTPS (SSL over HTTP) is also supported.

• ICQ/ AOL Messenger - AOL's Open System for Communication in Realtime (OSCAR) protocol used by ICQ and AOL Instant Messenger (AIM). 

Both non-SSL and SSL connections are supported.

• IRC (Internet Relay Chat) - an Internet standard protocol that supports interactive, real-time, text-based communications in established "chat rooms" on the Internet by means of IRC servers.

Both non-SSL and SSL connections are supported.

• Jabber - an open, XML-based protocol for instant messaging. Jabber is also known as XMPP, the Extensible Messaging and Presence Protocol.

• Mail.ru Agent - an instant messaging program created by Mail.ru.

NOTE: SSL connections between Jabber/Mail.ru Agent clients and the server are controlled as generic (non-SSL) connections.

• MAPI (Messaging Application Programming Interface) - MAPI/RPC (also known as Outlook - Exchange Transport Protocol) is the proprietary protocol that Microsoft Outlook uses to communicate with Microsoft Exchange Server. DeviceLock supports Outlook 2003, Outlook 2007, Outlook 2010 (both 64-bit and 32-bit versions) and all versions of Exchange Server.

• Skype - a proprietary voice-over-Internet Protocol service and software application. DeviceLock supports Skype version 4.x and later.

• SMB (Server Message Block) - a  network file sharing protocol.

• SMTP (Simple Mail Transfer Protocol) - an Internet standard protocol used for exchanging e-mail messages between SMTP servers on the Internet. 

Extended SMTP (ESMTP) is also supported. Both non-SSL and SSL connections are supported.

• Social Networks - controls communication with social networking sites. The following social networking sites are supported: Facebook (+API), Twitter, Google+, LinkedIn, Tumblr, MySpace, Vkontakte (+API), XING.com, LiveJournal, MeinVZ.de, StudiVZ.de, Disqus, LiveInternet.ru, Odnoklassniki.ru. 

NOTE: SSL traffic on social networking sites is controlled as generic (non-SSL) traffic.

• Telnet - the Internet standard protocol for remote terminal connection service. 

• Web Mail - controls Web-based mail communication. The following Web-based e-mail services are supported: Gmail, Yahoo! Mail, Hotmail (Outlook.com), AOL Mail, GMX.de, Web.de, Mail.ru, Rambler Mail, Yandex Mail.

Both non-SSL and SSL connections are supported.

• Windows Messenger - Microsoft Notification Protocol (MSNP), the underlying protocol used by Windows Live Messenger and Windows Messenger. 

• Yahoo Messenger - the underlying network protocol used by the Yahoo! Messenger instant messaging client for Yahoo!

NOTE: The SSL protocol is used in the Protocols White List to allow applications with embedded SSL certificates to connect to their servers.

NOTE: You can define different online vs. offline permissions for the same user or sets of users. Online permissions (Regular Profile) apply to client computers that are working online. Offline permissions (Offline Profile) apply to client computers that are working offline. By default, DeviceLock works in offline mode when the network cable is not connected to the client computer. For more information on DeviceLock offline policies, see "DeviceLock Security Policies (Offline Profile)."

To set permissions for a protocol, right-click the protocol, and then click Set Permissions or Set Offline Permissions. Alternatively, you can select the protocol for which you want to set permissions, and then click Set Permissions or Set Offline Permissions on the toolbar. You can select several protocols for which you want to set the same permissions by holding down the SHIFT key or the CTRL key while clicking them.

In DeviceLock Group Policy Manager and DeviceLock Service Settings Editor, if you want to reset permissions to the unconfigured state, select Undefine from the context menu.

If you want to reset previously set offline permissions to the unconfigured state, select Undefine Offline from the context menu. If offline permissions are undefined, regular permissions are applied to offline client computers.

In DeviceLock Group Policy Manager and DeviceLock Service Settings Editor, if you want to block the inheritance of offline permissions and enforce regular permissions, select Remove Offline from the context menu. 

• English-to-Russian translation