{"id":43553,"date":"2019-12-24T09:00:00","date_gmt":"2019-12-24T16:00:00","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=43553"},"modified":"2020-03-05T16:48:46","modified_gmt":"2020-03-05T23:48:46","slug":"policies-login-window","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/policies-login-window","title":{"rendered":"Understanding Policies: Login Window Controls"},"content":{"rendered":"\n

The Policies<\/a> feature of JumpCloud\u00ae<\/sup> Directory-as-a-Service\u00ae<\/sup> enables admins to automate a majority of their system security management needs across Windows\u00ae<\/sup>, Mac\u00ae<\/sup>, and Linux\u00ae<\/sup><\/a> systems. With the Login Window Controls\/Text, Logon, and Message Text For Users Attempting To Log On Policies, IT organizations can instantly tighten their control over how users access their systems.<\/p>\n\n\n\n

What are the Login Window Controls\/Text, Logon, and Message Text For Users Attempting To Log On Policies?<\/h2>\n\n\n\n

Login Window Controls\/Text \u2014 macOS\u00ae<\/sup><\/h3>\n\n\n\n

The Login Window Controls Policy<\/strong> allows IT admins to control how their end users\u2019 Mac screens look upon login. Specifically, the policy allows IT organizations to show or hide the Username and Password Dialog commonly present on macOS devices.<\/p>\n\n\n\n

The Login Window Text Policy<\/strong> enables IT admins to display a message of their creation that end users will see upon visiting their Mac login screens.<\/p>\n\n\n\n

Logon\/Message Text For Users Attempting To Log On \u2014 Windows<\/h3>\n\n\n\n

The Logon Policy<\/strong> is the Windows analogue to the Mac Login Window Controls Policy, except with considerably more configuration options. With Logon, admins can control nearly every aspect of the Windows login screen. This includes the obfuscation of account details at login, as well as the ability to revert back to the classic Windows logon interface. There are a number of variables that affect this policy, which are fully detailed in the JumpCloud admin portal.<\/p>\n\n\n\n

The Message Text For Users Attempting To Log On Policy<\/strong> is the Windows analogue to the Login Window Text Policy for Macs. IT admins can use the policy to create a custom text string that users will see upon Windows login.<\/p>\n\n\n\n

Why Use These Policies?<\/h2>\n\n\n\n

The benefits of these Policies are twofold.<\/p>\n\n\n\n

Security<\/h3>\n\n\n\n

One of the core uses of these Policies is to remove login information (i.e. username) from the screen after the system is opened. By doing so, IT admins can hide the system\u2019s core user, as well as local or super admin accounts. If the system was to be stolen or otherwise compromised, this practice reduces the risk of repeated brute force login attempts targeting a username, or attacks upon an admin login.<\/p>\n\n\n\n

Additionally, by controlling the appearance of login windows, admins can ensure that potentially compromising app notifications or other similar behaviors are hidden from bad actors.<\/p>\n\n\n\n

Efficiency<\/h3>\n\n\n\n

With control over the login window appearance and behavior, IT organizations can also speed up their users\u2019 login processes. The Window Logon Policy<\/strong> specifically can be used to control much of the nature of the Windows Logon screen. That means that admins can remove non-essential startup objects, like the Windows Startup sound and animations.<\/p>\n\n\n\n

These Policies also allow admins to communicate urgent or repeated information via text string to their users as soon as they open their systems. That way, admins can interface with their user base directly within their endpoints, making communication a breeze if the admin or employees are remote.<\/p>\n\n\n\n

How to Use Policies<\/h2>\n\n\n\n
\n