You are here: Prerequisites > Required User Permissions

Required User Permissions

The permissions required by the user account running the Configuration Utility (or the Configurator) depend on the state of the Intel AMT device.

Unconfigured Systems

The local user account running the Configuration Utility must have administrator permissions in the operating system. On operating systems with User Account Control (UAC), the Configuration Utility must be “Run as administrator”. If the Configuration Utility will be required to request certificates from a Certification Authority (CA), or create Active Directory (AD) objects, the user account must have sufficient permissions to do these tasks. If the user account does not have the required permissions, you must add the credentials of a domain user with these privileges to the profile (see Saving the Configuration Profile).

Configured Systems

After an Intel AMT device is configured, reconfiguration and maintenance tasks can only be done by a user defined in the device with administrator permissions. The user account running the Configuration Utility is not required to have administrator permissions in the operating system.

Note:
If the Intel AMT device is in Client Control mode, you can unconfigure Intel AMT without requiring administration privileges in the device. To do this, you must run the Configuration Utility with a local user account with administrator permissions on the Intel AMT system. On operating systems with (UAC), the Configuration Utility must be “Run as administrator”.

See Also:

Recommendations for Secure Deployment