View all Worklets
Windows

Windows - Security - Enforce Lock Screen on Inactivity

Automatically locks screen after period of inactivity on Windows.

Worklet Details

Introduction to the PowerShell Based Enforce Lock Screen on Inactivity Worklet

The Enforce Lock Screen on Inactivity Worklet is a PowerShell-based solution that allows administrators to enforce specific screen lock settings on Windows devices. By applying this Worklet, you can ensure that the machine inactivity limit is set according to your organization's security policies, reducing the risk of unauthorized access.

This Worklet modifies registry parameters to achieve this desired outcome, providing an efficient and secure way to manage the Windows Lock Screen settings across multiple endpoints.

Why would you use the Enforce Lock Screen on Inactivity Worklet?

Implementing an automatic screen lock policy for computers in your organization is crucial for maintaining a secure environment. Leaving machines unattended without enabling screen lock features may lead to unauthorized access and potential data breaches.

The Enforce Lock Screen on Inactivity Worklet automates the process of enforcing these security settings while providing centralized control over the configuration.

Components of the Enforce Lock Screen on Inactivity Worklet

The primary components of this Worklet include user-defined variables such as $minutes, which specify how many minutes of user inactivity should elapse before locking the screen automatically. It also checks if there is an existing Inactivity Timeout registry value; if not, it creates one using the specified time limit.

This Worklet contains remediation code that applies necessary changes if required values are not present or do not match desired settings. It provides an automated way for administrators to set security policies without manually adjusting user configuration through Control Panel on every endpoint.

How does the Enforce Lock Screen on Inactivity Worklet work?

The evaluation part of this Worklet checks whether an existing "InactivityTimeoutSecs" registry value matches the user-defined variable "$minutes." If it does not exist or does not match, flagged devices undergo remediation through targeted registry modifications. The remediation code either updates existing values or creates new ones to enforce the desired screen lock settings.

What is the expected outcome when you use the Enforce Lock Screen on Inactivity Worklet?

Applying this Worklet ensures that all targeted devices adhere to your organization's security policies concerning computer inactivity and screen locking. By doing so, unattended devices will automatically lock their screens after a specified period of user inactivity, minimizing potential risks associated with unauthorized access.

View in app

Consider Worklets your easy button

What's a Worklet?

A Worklet is an automation script, written in Bash or PowerShell, designed for seamless execution on endpoints – at scale – within the Automox platform. Worklet automation scripts perform configuration, remediation, and the installation or removal of applications and settings across Windows, macOS, and Linux.

do more with worklets