In this article
Account management portals and access settings
  • Account management portals and access settings
  • What roles can you assign to BenQ Board users?
  • Which role has the most privileges?
  • What combination of settings offers the strongest security?
Access Granted: Balancing User Authority and Security on BenQ Boards
  • BenQ
  • 2023-11-15

Having BenQ Boards at school is incredibly helpful with lessons, as they allow both teachers and students to utilize so many interactive tools and features. But since these boards are often permanent classroom fixtures, anyone can easily walk into a room and use them freely. This now brings up an essential security-related question: How much authority should you grant each user?

The answer really depends on your school’s security strategy. If your school is small enough, and it’s easy to keep tabs on how your students use the board, then just having usage guidelines should suffice. But if your boards are in environments where guests can come in at any time, then you may be opening up your school to potential data security risks.

Fortunately for schools, BenQ Boards come with security features that allow you to enforce stricter access controls.

Account management portals and access settings

The BenQ Account Management System (AMS) is mostly for teachers. AMS is an online platform that they can use to log in to their boards, personalize their home screens, bookmark webpages, and most importantly, link their cloud storage account for easy access to their lesson files. Administrators can also use AMS to assign roles for each user. We shall discuss this in more detail below.

On the other hand, you also have the BenQ Identity and Access Management (IAM) platform, which is designed for IT administrators. IAM is a cloud-based management console that allows admins to enforce access controls for their BenQ Boards. They can easily add and remove authorized users (either manually or by syncing with their school’s directory service) as well as assign them specific roles.

What roles can you assign to BenQ Board users?

Below is the list of different user roles. But before we get to that, we must first discuss three settings that affect the level of access these users have on the BenQ Board.

1. Is AMS enabled?

When setting up their boards, IT administrators have the option to either enable or disable the AMS service for their BenQ Board. Without AMS, everyone will have the same level of user privileges and access as an administrator. This can work for very small schools with only a handful of BenQ Boards, where teachers can easily enforce usage guidelines and monitor who can access their boards at any given time. But for larger schools, we highly recommend enabling the service for better control and security.

How to enable AMS

1. On the bottom left corner of the screen, tap User.

2. Enable AMS Service.

3. Enter the local administrator password, and then tap Log in.

2. Is Authentication mode enabled?

Authentication mode is a special setting that administrators can find on AMS. When activated, this mode requires everyone to log in with a registered user account on IAM before they can use the BenQ Board or access any of its features.

How to enable the Authentication mode

1. Log in to https://ams.benq.com. 

2. Go to Equipment Management.

3. Select a device.

4. Click Set up equipment information.

5. Enable Authentication mode.

3. Are users assigned special roles?

IT administrators can go to their school’s AMS console and assign a special role (Restricted user or Administrator) to an individual user or user groups. When someone becomes a restricted user, they will only be able to modify the most basic BenQ Board settings, such as display brightness and volume controls. They won’t be able to tamper with critical device settings, which are normally reserved for those assigned the administrator role.

How to assign user roles

1. Log in to https://iam.benq.com.

2. Go to Accounts.

3. Select a user.

4. Click Edit service permissions.

5. For AMS, select a role.

You can select between User (also known as Authenticated User) and Restricted User.

Here’s the summary of all the user roles:

User role

AMS Service

Public user

If AMS is disabled on the board, you cannot assign any of the roles listed below. The board is essentially for public use, and all users are considered public users and have administrator privileges.

Disabled

Guest user

A guest user is anyone without a registered user account on IAM.

Enabled

Administrator

This role is assigned to the people tasked to manage their BenQ Boards. They have access to all the device and user list settings.

Enabled

Authenticated user

Any user with a registered account on IAM is considered an authenticated user.

Enabled

Resticted user

This is an authenticated user who can only access their BenQ Board’s basic settings.

Enabled

Which role has the most privileges?

User role

Level of authority

Administrator

Since administrators require full access in order to effectively manage and maintain their BenQ Boards, they have control over all settings.

Highest

Public user

Similar to administrators, public users have access to the full set of device settings and all the local files and folders. But even with these privileges, they have no ability to monitor or control how other people access or use the device.

High

Authenticated user

As their accounts are registered on IAM, they can log into their board, access their files and folders, and are allowed to modify their device’s settings. But unlike administrators, they do not have access to critical settings such as factory reset, among other things.

Medium

Restricted user

With stricter controls imposed on their accounts, restricted users only have access to their files and folders as well as the board’s key features and some basic settings.

Low

Guest user

If Authentication mode is disabled, then guests can still use the board’s key features. These include connections to external input sources, the EZWrite whiteboard, and wireless screen sharing through InstaShare.

If Authentication mode is enabled, guests will not be able to use the board at all.

No Authority

User Role

AMS

Will the user be able to link their cloud storage accounts?

Is the user allowed to modify the board’s settings?

Will the user be able to access other users’ local files and folders?

Public user

Disabled

Full range of settings

All users

Guest user

Enabled

Authenticated user

Enabled

Regular user settings

Restricted user

Enabled

Only basic settings

Administrator

Enabled

Full range of settings

Only the administrator

What combination of settings offers the strongest security?

Earlier we noted that there are three different settings that affect user access on BenQ Boards:

  • Is AMS enabled?

  • Is Authentication mode enabled?

  • What roles are assigned to each user?

How you configure all three affect the types of users who can access the board, and subsequently, the level of security that comes with the level of access they have. The combination that offers the best security is when AMS and Authentication mode are enabled, and the Restricted user role is assigned to users.

The diagram and table below further explain what each combination of settings entails.

Level of security

Security Settings

Weakest

As mentioned earlier, if you opt to not use AMS on your BenQ Board, any person with physical access to the board can use features such as EZWrite and InstaShare, view and modify locally stored files and folders, and alter the device settings.

Since there is no way to limit who can do what on the board, it exposes the device and locally stored data to potential compromise and security risks.

Medium

Enabling AMS on your BenQ Board allows you to create or import user accounts, effectively giving authenticated users their own private folders on the board. This helps keep their files separate and prevents other users from changing their home screen preferences.

Guest users will still be able use the board, but they will only have access to the BenQ Board’s key features.

Strong

With the Authentication mode enabled on IAM, all users will be required to log in. This means that only authenticated users can use the board and its features.

Strongest

Assigning the Restricted user role to some authenticated users further enhances security as restricted users are not allowed to modify any critical BenQ Board settings.

AMS Smart Solution Applications Smart Board BenQ Board Pro Interactive Display BenQ Board Essential BenQ Board Master Higher Education K-12 BenQ Board Security IAM

See all
Related articles

See all
06/06/2025
Solutions Guide: Better Security with BenQ
BenQ Board DMS Security AMS Smart Solution System Management Blended Learning Cloud Smart Board BenQ Board Pro Interactive Display BenQ Board Essential BenQ Board Master Higher Education K-12 IAM
Wixie_BenQ_Picture - Rodmap Learning_PR_Tumbnail image
30/04/2025
BenQ Partners With Roadmap Learning to Revolutionize K-5 Education
Active Learning Hybrid Learning ClassroomCare News Wireless Screen Sharing EZWrite InstaShare Partner Software Interactive Learning Cloud Whiteboarding Higher Education Partnerships K-12 BenQ Board Security ChromeOS
29/04/2025
Brochure: BenQ Higher Education Solutions
Active Learning Hybrid Learning ClassroomCare Interactive Learning Blended Learning BenQ Board BenQ Board Pro BenQ Board Master BenQ Board Essential Smart Display Pantone Validated Display Wireless Screen Sharing Video Conferencing EZWrite InstaShare X-Sign X-Sign Broadcast AMS DMS Applications Cloud Interactive Display Security Smart Solution Whiteboarding DLP Projector Higher Education
2303790383
29/04/2025
Brochure: BenQ K-12 Education Solutions
Active Learning Hybrid Learning ClassroomCare Interactive Learning Blended Learning BenQ Board Smart Display K-12 Pantone Validated Display Wireless Screen Sharing Video Conferencing EZWrite InstaShare X-Sign X-Sign Broadcast AMS DMS Cloud Interactive Display Security Whiteboarding DLP Projector Brochure
04/03/2025
BenQ Education Partners With MagicSchool
Active Learning Hybrid Learning News Wireless Screen Sharing EZWrite InstaShare Interactive Learning Wireless Projection Applications Cloud Whiteboarding Smart Board InstaShare Button Interactive Display BenQ Board Essential BenQ Board Master Higher Education K-12 BenQ Board Security Preschool
22/11/2024
BenQ EZWrite 6 Earns CASA Tier 3 for Cloud Data Security
Preschool K-12 Higher Education News BenQ Board EZWrite Certifications Applications BenQ Board Pro BenQ Board Master BenQ Board Essential Cloud Interactive Display Security Smart Board
30/10/2024
Tap and Teach with NFC on the BenQ Board
BenQ Board BenQ Board Pro BenQ Board Master Smart Board K-12 Higher Education AMS DMS Security Interactive Display Smart Solution
See all
AMS Smart Solution Applications Smart Board BenQ Board Pro Interactive Display BenQ Board Essential BenQ Board Master Higher Education K-12 BenQ Board Security IAM

Related products

BenQ Board Pro | RP04 Series (RP6504, RP7504, RP8604)
BenQ Board Pro | RP04

Contact Sales

Learn more
BenQ Board Master | RM04

Contact Sales

Learn more
BenQ Board Essential | RE03

Contact Sales

Learn more
BenQ AMS Account Management System on interactive display and laptop
AMS

Contact Sales

Learn more
BenQ IAM Identity and Access Manager icon and laptop
IAM

Contact Sales

Learn more
Cookie Setting

We use cookies and similar technologies to process personal information for the operation of our website, statistical analysis, and providing targeted advertising. We share information about your use of the site with our advertising partners who may further share it with additional parties. You may opt out of performance cookies here, and learn more about how we use cookies here” 

How can I change my BenQ cookie settings?

Page updated: May 2020

Some essential features on BenQ sites just won’t work without cookies. And having other cookies switched off can seriously affect the way you’ll be able to enjoy our services.

Please check your cookie settings below and turn on any cookies you’re happy with.

“Strictly necessary” cookies can’t be turned off. But Functional and Performance cookies can be turned on or off below. You can learn more about cookies and what they do on our other pages.

If you've chosen to block third-party cookies on your browser, your cookie preferences won't carry over from benq.eu to benq.xx and vice versa. Please make sure to set your cookie preferences in both places.

  • On

    Strictly necessary cookies

    These cookies are essential so that you can move around the website and use its features. Without these cookies services you have asked for cannot be provided.

    See list of strictly necessary cookies

  • On

    Off

    Functional cookies

    These cookies allow the website to remember choices you make to give you better functionality and personal features.

    See list of functional cookies

  • On

    Off

    Performance cookies and advertising cookies

    Performance cookies

    These cookies help to improve the performance of BenQ. If you want to opt-out of advertising cookies, you have to turn-off performance cookies. We also use Google Analytics, SessionCam and Hotjar to track activity and performance on the BenQ website. You can control the information provided to Google, SessionCam and Hotjar.  To opt out of certain ads provided by Google you can use any of the methods set forth here or using the Google Analytics opt out browser add-on here. To opt-out of SessionCam collecting data, you can disable tracking completely by following link:https://sessioncam.com/choose-not-to-be-recorded/. To opt-out of Hotjar collecting data, you can disable tracking completely by following link:https://www.hotjar.com/privacy/do-not-track/.

    See list of performance and advertising cookies

     

    Advertising cookies

    These cookies are used to track your activity on the BenQ website and other websites across the Internet, help measure the effectiveness of our advertising campaign and deliver advertisements that are more relevant to you and your interests. We use various advertising partners, including Amazon, Facebook, and Google. These cookies and other technologies capture data like your IP address, when you viewed the page or email, what device you were using and where you were. You can find out how to avoid them below.

    See list of performance and advertising cookies

     

We use cookies and similar technologies to process personal information for the operation of our website, statistical analysis, and providing targeted advertising. We share information about your use of the site with our advertising partners who may further share it with additional parties. You may opt out of performance cookies here, and learn more about how we use cookies here” 

Cookie Setting Find More