Documentation Index

Fetch the complete documentation index at: https://docs.senhasegura.io/llms.txt

Use this file to discover all available pages before exploring further.

How to configure access policies with session recording

Prev Next

This document describes how to create and configure access policies in EPM macOS for devices running the macOS operating system. Access policies define the actions that are allowed or blocked for applications and commands, and also enable the activation of session recording for audit purposes.

How to access access policies

  1. On Segura® Platform, in the products menu, go to EPM > Policies > MacOS > Access policies.
  2. Click the Add button in the upper right corner.

At the Segregation step, select one of the available segregation types:

  • General: select whether the access list should apply to all devices with EPM macOS installed.
  • Device: select whether the access list should apply to a specific list of devices to be selected.
  • Users: select whether the access list should apply to a specific list of users to be selected.

At the General step, fill out the following fields:

  1. Category*: select the policy type (e.g., Applications).
  2. Name*: enter a name that identifies the policy.
  3. Status*: define whether the policy will be active or inactive.
  4. Action*: choose the action to be applied (allow, block, request approval, etc.).
  5. Click Continue to proceed to the applications tab.

In the Applications tab, you can define:

  • The policy application strategy.
  • The rule matching criteria.
  • Whether you want to record sessions for these applications or not.

How to enable session recording

To record user activity when running an application:

  1. Enable the Record session for these applications* option.
    1. Select Enabled.

After configuring the policy details and defining the applications and rules, review the data entered in the Review tab and click Save.

The new policy will be listed on the main screen of access policies for macOS.

Attention

If during session recording there is not enough disk space, a message will prompt the user to free up space. If sufficient space is still not available, both the recording and the application execution will be terminated automatically to protect data integrity. Additionally, if the user manually stops the recording, the application will also be terminated immediately along with the recording.

How to access the recorded session

  1. On Segura® Platform, in the navigation bar, hover over the Products menu and select PAM Core.
  2. In the side menu, select Audit > Sessions > Remote sessions.
  3. Use the available fields to filter the recording.
  4. In the Actions dropdown menu, select the Video of session option.
  5. In the video session report, stream the video session by clicking the Video button.
Digital sovereignty is a fundamental right for citizens, institutions, and society. That’s why we work every day.
Connect With Us
SEGURA
LEARN
EXPLORE
Copyright © Segura. All Rights Reserved