Table of contents
1. Do I need to reboot the user's computer after agent installation?
2. Can I change the user's permission on the fly?
3. Do I need to reboot the user's computer after I change the user's permissions?
4. If a user is blocked and needs to capture the screen for working purposes, what can the admin do?
6. I don't want to tell anything to my employees: just block the screenshots. Can SCM do that?
7. What if the user takes a picture of the screen using a photocamera or a smartphone?
8. What is an Data Loss Prevention and Detection solution?
FAQ
1. Do I need to reboot the user's computer after agent installation?
No, you don't. Screen Capture Manager agent install smoothly on client computers and doesn't require any reboot.
2. Can I change the user's permission on the fly?
Yes, you can. Screen Capture Manager has been designed also not to load other burden over the administrator's shoulders. User's permission can be changed simply by clicking on a button in the management console. After a bunch of seconds, the PC where the user is working on will get the new permissions, without reboot and without closing and re-opening the user's session.
3. Do I need to reboot the user's computer after I change the user's permissions?
No, you don't. Unlike other kinds of approach, Screen Capture Manager doesn't require to reboot any systems because the screen capture features are managed per user and not per computer system.
4. If a user is blocked and needs to capture the screen for working purposes, what can the admin do?
The user can call the administrator, or open a ticket to the help desk, asking to temporarily open the screen capture features on his account. The administrator simply change the user's permissions from "Block" to "Enable" or to "Shadow" (if an internal policy requires to have a copy of what the user captures). After a bunch of seconds, the user will get the new permission active and can take a screenshot. When he finishes his work, his permissions can be restored to "Block".
5. A Company policy requires to warn the users their actions are monitored. Can Screen Capture Manager handle this?
Sure, it can. You can configure Screen Capture Manager to warn the blocked user he cannot do any screenshot by displaying a message anytime he presses the Print Screen key or he runs the Snipping Tool. You can even display an icon in the tray bar which describes the user's permissions.
6. I don't want to tell anything to my employees: just block the screenshots. Can SCM do that?
Sure, it can. You can simply configure your user's account not to grab any screenshot, without tell anything to your employees. In this case, when they press the Print Screen key, nothing will be put into the clipboard, and when they try to launch the Snipping tool, it simply won't start.
7. What if the user takes a picture of the screen using a photocamera or a smartphone?
Insiders work in offices with other people around them: how easy is to press a single key (the Print Screen key) compared to how strange is a guy taking a picture of his screen? it's a matter of deterrence. The people hanging around the office are a deterrent for an employee who wants to act in a fraudulent manner, especially if his actions are clearly evident: if an employee wants to take a picture by using his smartphone - surely he can do that - but someone else will notice it. And if he takes dozens of pictures of screens where customer or confidential data are displayed, he can raise some question among his colleagues. That's why taking pictures of screens using a camera or a smartphone is not the easiest and most secret way to leak data from a company.
Instead, if he presses the Print Screen key hundreds of time in a day, capturing confidential data, no one will ever detect it. Then, all the captured image file can be copied on a USB stick or put in a ZIP file that can be sent via email to an external party.
Anyway, the insider can hide his actions by taking pictures with his camera after his colleagues went home, or using a workstation in a closed office. In both cases the user runs the risk his actions can be detected, so the deterrence factor remains, although mitigated by environment factors.
Risk management is based on several pillars: one of them is to evaluate the priority of the risk treatment. This priority is also based on a probability: if we take into account the two kind of threats (the Print Screen key and the smartphone snapshot) have the same impact on the company, the one that needs to have a higher priority of treatment is the one having the highest probability to happen.
An employee pressing a Print Screen key several times is a risk which has a much higher probability to happen, compared to the risk that an employee takes pictures with his smartphone. If both threats can happen, the priority of treatment goes to the one with the highest probability to happen.
8. What is a Data Loss Prevention solution?
A Data Loss Prevention (DLP) solution is a system that identify, monitor, and protect data in use (e.g. endpoint actions), data in motion (e.g. network actions), and data at rest (e.g. data storage) through several techniques and with a centralized management framework. Systems are designed to detect and prevent unauthorized use and transmission of confidential information.
Screen Capture Manager is a Data Loss Prevention solution because it helps stop potential data leakages and allows the detection of data that has left the company.
