It must be possible as administrator to disable the share function of Lifesizecloud.
Not everyone should have that option in our company.
Agreed. Not all enterprise scenarios wish to have their users able to add additional users to their Cloud subscription. Leave this as an option for the Administrator.
I agree, allowing users to add additional users is a dangerous thing to do
Just want to make sure that you know limiting to the domain of the subscriptions was delivered, as per this request: Enhancement request: The ability to disable “Invite New Users to Join Lifesize Cloud” option in Lifesize application..
I recognize that probably does not answer this need.
i know the domain limiting. But that doesnt answer To my needs.
It must be possible To disable the share lifesizecloud button. Company with +2500 employees really need the option To disable the button. Only admin must have the button.
Option in next release?
That is not my call, but I'll make sure that rmaloney and ranuar both know of the desire.
Something that could help you today, is you can use the feature where you limit the domain and simply type in a domain that doesn't exist. This won't eliminate the button, but it will block people from being able to sign up.
Rafi Anuar wrote: Something that could help you today, is you can use the feature where you limit the domain and simply type in a domain that doesn't exist. This won't eliminate the button, but it will block people from being able to sign up.
Rafi Anuar wrote:
^^Nice workaround. I had not thought of doing that.I would still like to see this feature able to be disabled completely via administrator.
Just wanted to piggy back here, this workaround will block anyone from joining the account whether an admin sends an invite from the console or if a user uses the share button.
To further expand on the workaround, you could invite all the users you want to join, wait for them to activate their accounts and populate in your directory, and THEN go in and input a domain that doesn't exist only when you want to block people from joining the account. Then from there just keep adding and removing the domain that doesn't exist as you want to add new people to the account.
I just found out that e-mail verification no longer takes place!
When I create a new user, the account becomes active immediately without verification.
This means, when an attacker knows the company domain, he just can fill in the fields with a fantasy mail address (it only has to end with the company's domain) and he has access to the whole directory immediately and consumes one user licence.
Of course, if the admin restricts the access by entering a fantasy domain in the webconsole, this method doesn't work. But if the attacker knows the fantasy domain (it must not exist since the e-mail address will not be verified!), we have the same problem!
Can you explain me what is the reason for removing e-mail verification?
Retrieving data ...