By default, the user has permission to change application definitions and predefined applications, passwords, and functionality. You do this through the administrative management utilities.
You have several options for restricting user access by setting preferences at the user, group policy, container, or organizational unit level. This includes:
Full access to all administrative tools.
Access to selected administrative tools.
Hiding the SecureLogin icon on the notification area (system tray).
Hiding and password protecting the SecureLogin icon in the notification area (system tray).
If the SecureLogin icon is password protected, anyone attempting to access the NetIQ SecureLogin Client Utility through the SecureLogin icon is prompted to provide the network password. This prevents non-authorized users from viewing SecureLogin data. However, an authorized user can use the administration tools to modify SecureLogin.