Specify what permissions users and user groups have when accessing hosts in your account.

1. Central.

   Permission	Description
   Enable LogMeIn Central	When selected, users will always work in the LogMeIn Central interface. Otherwise, users will always work in the simple client interface.
   Reports	Allow users to view LogMeIn Central reports. To view Hamachi reports, users must also have the following permission: Access networks in the account.
   Alert management	Allow users to create and manage alerts.Former Central Premier subscribers and current Central Base plan plus Automation module subscribers only.
   Configuration management	Allow users to create host preference packages.
   Computer group management	Allow users to create and manage groups of computers.
   View inventory data	Allow users to view inventory reports. Users must also have the following permissions: Reports and Alert Management.Available to former Central Premier subscribers and current Central Base plan plus Insight module subscribers only.
   Inventory management	Allow users to enable/disable inventory data collection for Windows hosts in this account. Only valid for users with access to all computers in the account.Available to former Central Premier subscribers and current Central Base plan plus Insight module subscribers only.
   Create and modify One2Many tasks	Allow users to create and modify One2Many tasks.Available to former Central Premier subscribers and current Central Base plan plus Automation module subscribers only.
   Run One2Many tasks	Allow users to run One2Many tasks.Available to former Central Premier subscribers and current Central Base plan plus Automation module subscribers only.
   Windows update management	Allow users to manage Windows and Microsoft updates. To manage updates on multiple computers users must also have the Enable LogMeIn Central permission selected.
   Application update management	Allow users to manage third-party application updates. To manage updates on multiple computers users must also have the Enable LogMeIn Central permission selected.
   Anti-virus management	Allow users to use the Antivirus (AV) Management feature and deploy a selected antivirus policy on hosts.
   Remote execution	Allow users to see the Remote Execution page in Central.
   Create and run job	Allow users to create and run jobs. Remember: After successful two-factor authentication, users will be able to run scripts without providing credentials for the impacted computers.
   Account Sync	Allow users to sync groups, users, one2many tasks, and alerts between an account and its child accounts.

2. Management.

   Permission	Description
   User management	Allow users to edit and delete users in this account. To add users, users must also have the following permission: Enable LogMeIn Central.
   Login policy management	Allow users to apply a login policy to all users in aLogMeIn Central account, including the account holder. See How to Set a Password Strength Requirement.
   Login credentials can be saved	Allow users to enable the Remember Login Credentials option on the Account > Security page, which allows users to save host login credentials when connecting to a Host. See How to Set Up Automatic Authentication.
   Create desktop shortcut	Allow users to create desktop shortcuts for quick access to Hosts.
   Deployment	Allow users to install Host software. To generate Installation Links, users must also have the following permission: Enable LogMeIn Central. To deploy Hamachi networks, users must also have the following permission: Network and Client Management.
   Update and Anti-Virus Management	Allow users to manage Windows and Microsoft updates and to use the Anti-Virus Management feature. To manage updates on multiple computers, users must also have the following permission: Enable LogMeIn Central.Anti-Virus Management features are available for former Central Premier subscribers and current Central Base plus Security module subscribers only.
   Enable account-level security features	Allow users to edit security settings on the account email address > Account > Security tab.

3. Define the interface users see when accessing Host computers.

   Permission	Description
   Group settings apply	Allow users to see the interface made available to members of the assigned User Group.
   Show advanced interface when available	Allow users to see the "Detailed mode" (or "classic view") with remote management menus, such as Computer Management, Computer Settings, Performance Info, etc.
   Show simplified LogMeIn interface	Allow users to see the "Compact view" without remote management menu options.

4. Group/Computer Permission.

   Permission	Description
   Allow full Remote Control	Allow users to interact with host computers during remote control. When disabled, users can access remote computers in Remote View, where users can still manage computers by other means, such as One2Many, Remote Execution, and Antivirus management. To make sure the user cannot make changes to target computers, review all permissions. Disabling this permission also changes the layout of the Dashboard, since it opens in compact view and a Remote View (instead of Remote Control) option will be available. Important: This permission impacts the accessibility of all hosts. When disabled, the user can connect to any host in Remote View only. Remote View is available on PC and Mac hosts that have the latest host release installed.
   Group settings apply	Allow users to access all computers made available to members of the assigned User Group. Note: Group settings apply is not visible when editing permissions for a group.
   Access all computers in the account	Allow users to access all computers in the account.
   Specify the groups and computers the selected user can access	Select an entire group by selecting the box next to the name in the left pane. Important: Computers can be reassigned, or moved, from one group to another. If moved, a computer may become inaccessible to some users. See About the Impact of Group Changes (Moved Computers) on User Access.

5. Set Network (Hamachi) permissions. For more information on Hamachi, see What's new in Hamachi.

   Permission	Description
   Access networks in the account	Allow users to access all Hamachi networks in the account.
   Network and Client Management	Allow users to create and edit Hamachi networks and deploy Hamachi clients.
   Edit Client Defaults	Allow users to change the default settings applied to deployed Hamachi clients.
   Edit Network Defaults	Allow users to change the default settings applied to new Hamachi networks.

6. Once the user has accepted the invitation, the following security permissions become available under Extra Security

   Option	Description
   Emailed security code	Require users to enter a security code when accessing the profile User of [your "Company Name"]. The code is sent via email to the specified address. Each code can be used only once.
   Printed security code	Require users to enter a security code from a printed list when accessing the profile User of [your "Company Name"]. A list of one-time security codes is generated for printing. Each time a user accesses the profile, he will be prompted to enter a code from the printed list. The user will be able to generate a new list of codes on the Account > Security tab.
   Enforce two-factor authentication for this user	Require users to follow a two-step process to verify their identity. They can choose any method currently available for the client. The policy cannot force them to use a specific method. For details, see Two-Step Verification.