All screens that a user has access to display information about privileged entities are filtered by their Access Group. The actions that can be taken also affect these privileged entities. To prevent abuses, Segura consults the rules applied to the user connecting to the privileged entity.
If the user has more than one access group with access to privileged information, Segura applies the most restrictive group rule. The restriction levels are based on the number of steps and people aware of the operation:
- Allows access to the information.
- Allows access requiring justification from the requester.
- Allows access within a time interval and with an approver.