Looking for documentation on PROe version 3, released in April of 2012? Please visit our current documentation.
Managing User Access
Overview
Depending on the circumstances, you have several options for keeping users from accessing, backing up and restoring with CrashPlan.
All these actions can be reversed, but in cases where loss of data results, the loss of data is not reversible. Only the ability to reinstate the object is possible. Reinstating does not restore an archive that has been removed.
Restricting Access
As this table illustrates, each option that prevents user access has different consequences. Choose the option that best fits your situation.
| Command | Prevents backup for | Archive | Destinations | Frees a license | Situation |
|---|---|---|---|---|---|
| Deauthorize | This user's computer | Retained | Retained | No | Computer has been misplaced, but not confirmed lost or stolen |
| Block User | This user and all of this user's computers | Removed according to archive retention policy | Deleted | Yes | User has left the company |
| Deactivate Computer | This computer for this user | Removed according to archive retention policy | Deleted | Yes | User has confirmed that computer is lost |
| Deactivate User | This user and all of this user's computers | Removed according to archive retention policy | Deleted | Yes | User has left the company |
| Deactivate Org | This org and all of this orgs's users and computers | Removed according to archive retention policy | Deleted | Yes | Mass removal of users, computers and backup data |
Reinstating Access
Use the follow table to reinstate users whose access you have prevented.
| To | To This |
|---|---|
| Reauthorize a computer | USER: User logs in to the computer for which he was deauthorized. |
| Activate a computer | ADMIN: In admin console, display computer info, then click Activate or… USER: User logs in on new computer. |
| Activate a user | ADMIN: In admin console, display user info, then click Activate or… USER: There is no way for users to reactivate themselves. |
| Unblock a user | ADMIN: In admin console, display user info, then click Unblock. USER: There is no way for a user to reverse a Block operation. |
How It Works
Deauthorize
Deauthorize computers to prevent unauthorized access to the CrashPlan desktop (including access to Restore), especially in configurations where the client's security settings do not require the account password for access to the CrashPlan Desktop. Deauthorize may also be used for troubleshooting to force the user to log into the CrashPlan desktop. Deauthorization of a computer results in the following:
- Logs the user out of the CrashPlan desktop on that particular client.
- CrashPlan desktop displays the login screen when it is launched.
- No backup occurs.
How To Deauthorize a Computer from the CrashPlan Desktop
Issue the deauthorize client command.
How To Deauthorize a Computer from the PRO Server
- Navigate to or search for the computer you'd like to deauthorize.
- From the navigation menu, click Deauthorize Computer.
How To Reauthorize a Computer
A computer must be reauthorized from the CrashPlan desktop. To do so, log into the CrashPlan desktop.
Deactivate Overview
You can deactivate computers, users or orgs. Deactivation of any object is a potentially destructive operation. Always treat deactivation as a destructive operations and use with care.
Deactivate Computer
Deactivate a computer when a computer is reassigned, decommissioned, lost or stolen. Deactivating a computer results in the following:
- Computer is instructed to permanently disconnect from PRO Server and stops backing up.
If the computer is not connected at time of deactivation, the computer receives the disconnect instruction immediately upon reconnection. - CrashPlan desktop displays the Login screen.
- Backup archives stored on PRO Server destinations are removed based on the PRO Server's data retention settings.
- Backup archives stored on PRO Client or local folder destinations are removed immediately.
- The PRO Client seat license is freed for use elsewhere.
Other computers in the user's account are unaffected by deactivation of another computer. Deactivated computers are able to be reactivated. However, if any backup archives were removed during deactivation, the archive(s) are not recoverable by reactivation.
How To Deactivate a Computer
- Click the Organizations tab.
- Click the user whose computer you want to deactivate.
- On the user's page, click the computer that you want to deactivate.
- From the navigation menu, click Deactivate Computer.
- Click OK in the message box to confirm that you want to deactivate this user's computer.
How to Reactivate a Computer from the PRO Server
- Click the Organizations tab.
- Click the user whose computer you want to reactivate.
- With the user's page displayed, from the navigation menu, click Show Deactivated Computers.
- Click the computer that you want to reactivate.
- From the navigation menu, click Activate Computer.
- Click the Use? check box under Backup Destinations to re-enable backup.
- Click Save.
How to Reactivate a Computer from the CrashPlan Desktop
- Launch the CrashPlan desktop
- Select Existing Account
- Enter the user's credenials and log in
In order to reactivate a computer from the CrashPlan desktop, the user must be active.
Deactivate User
Use the Deactivate User option to remove a user's access to CrashPlan globally (for example, when an employee has left the company). When you deactivate a user:
- All the user's computers are deactivated. See Deactivate Computer.
- The user's available backup destinations for all computers are completely removed.
- The user is no longer alowed to:
- Log into existing computers
- Add new computers
- Log in via the web console to perform web restores
How To Deactivate a User
- Click the Organizations tab.
- Click the user you want to deactivate.
- From the navigation menu, click Deactivate User.
- Confirm that you'd like to move forward with deactivation.
How To Reactivate a User
- Search for the user you'd like to reactivate.
- From the navigation menu, click Reactivate User.
- If you'd like to additionaly reactivate the user's computers, see How To Reactivate a Computer.
Deactivate Org
Deactivate an org to remove an org you are no longer using. When you deactivate an org, all active users and computers within the org are also deactivated. See Deactivate User and Deactivate Computer.
Blocking
Blocking a user works exactly as deactivating a user and should be treated as a destructive operation. When you block a user:
- All the user's computers are deactivated. See Deactivate Computer.
- The user's available backup destinations for all computers are completely removed.
- The user is no longer alowed to:
- Log into existing computers
- Add new computers
- Log in via the web console to perform web restores
How To Block a User
- Search for the user you'd like to block.
- From the navigation menu, click Block User.
How To Unblock a User
- Search for the user you'd like to block.
- From the navigation menu, click Unblock User.
- If you'd like to additionally reactivate the user's computers, see How To Reactivate a Computer.