Here's my question...

I have a Remote Control Policy configured to require permission for remote control functionality to process. If I initiate a FTP session with a user logged in, permission must be granted. If I initiate a FTP session without a user logged in, I get instant access.

Our concern is that someone can use FTP to access a computer with sensative information potentially stored on it without permission.

Is this working as designed or is this a bug?

Thanks in advance.