This document provides information about the Global parameters configuration screen of the EPM module, which allows you to define various settings that affect the operation of the product.
Access Path
- In Segura, on the navigation bar, hover over Product Menu and select EPM.
- In the sidebar menu, select Settings > Parameters > EPM.
Installation Settings
| Item | Type | Required | Description |
|---|---|---|---|
| Vault token | Text Field | No | Identification token of the vault used by the system. |
Modules
| Item | Type | Required | Description |
|---|---|---|---|
| Enable credentials? | Radio Button | Yes | Determines if the credentials module is active. Options: Yes or No. |
| Enable applications? | Radio Button | Yes | Determines if the applications module is active. Options: Yes or No. |
| Enable uninstall? | Radio Button | Yes | Determines if system uninstallation is allowed. Options: Yes or No. |
| Enable network share? | Radio Button | Yes | Determines if network sharing is active. Options: Yes or No. |
| Enable network interface? | Radio Button | Yes | Determines if the network interface is active. Options: Yes or No. |
| Enable control panel? | Radio Button | Yes | Determines if the control panel is active. Options: Yes or No. |
General Settings
| Item | Type | Required | Description |
|---|---|---|---|
| Enable offline use? | Radio Button | Yes | Determines if offline use is allowed. Options: Yes or No. |
| Require PAM user?* | Radio Button | Yes | Determines if using a PAM user is required. Options: Yes or No. |
| Enable UAC integration? | Radio Button | Yes | Determines if integration with UAC is active. Options: Yes or No. |
| Enable vault? | Radio Button | Yes | Determines if the vault is active. Options: Yes or No. |
| Enable recording session? | Radio Button | Yes | Determines if session recording is allowed. Options: Yes or No. |
| Enable application malware and reputation scan? | Radio Button | Yes | Determines if malware scanning is active. Options: Yes or No. |
| Minutes interval to request credentials | Quantity picker | No | Defines the interval in minutes to request credentials. |
| Block access to network? | Radio Button | No | Determines if network access should be blocked. Options: Yes or No. |
| Block user | Dropdown Menu | No | Allows selecting users to be blocked. |
| Occurrences (minimum) | Quantity picker | No | Defines the minimum number of occurrences. |
| Enable DLL analysis? | Radio Button | Yes | Determines if DLL analysis is active. Options: Yes or No. |
| Enable JIT access? | Radio Button | Yes | Determines if Just-In-Time access is active. Options: Yes or No. |
Trusted and Ignore Directories
| Item | Type | Description |
|---|---|---|
| Add | Button | Add a new entry to the New trusted directory table. |
| New trusted directory | Table | Allows adding trusted directories that will be ignored by the scan. |
| Add | Button | Add a new entry to the Directory to be ignored table**,** |
| Directory to be ignored | Table | Allows adding directories that will be ignored by the system. |
API Token
| Item | Type | Description |
|---|---|---|
| VirusTotal API token | Text Field | Access token for the VirusTotal API. |
Authentication
| Item | Type | Required | Description |
|---|---|---|---|
| Enable multifactor authentication at login?* | Radio Button | Yes | Determines if multifactor authentication is required at login. Options: Yes or No. |
| Enable multifactor authentication to elevate applications?* | Radio Button | Yes | Determines if multifactor authentication is required to elevate applications. Options: Yes or No. |
| Enable Single Sign-On?* | Radio Button | Yes | Determines if Single Sign-On is active. Options: Yes or No. |
Workflow Configuration
| Item | Type | Required | Description |
|---|---|---|---|
| User can elevate applications | Checkbox | No | Determines if the user can elevate application privileges. |
| Require reason to elevate applications | Checkbox | No | Determines if justification is required to elevate privileges. |
| Require approval to elevate applications | Checkbox | No | Determines if approval is required to elevate privileges. |
| Approvals required | Quantity picker | No | Defines the number of required approvals. |
| Disapprovals required to cancel | Quantity picker | No | Defines the number of rejections to cancel a request. |
| Approval in levels | Checkbox | No | Determines if approval occurs in hierarchical levels. |
| Allow emergency access | Checkbox | No | Determines if emergency access is allowed. |
Access Request Settings
| Item | Type | Required | Description |
|---|---|---|---|
| Governance ID required when justifying?* | Radio Button | Yes | Determines if specifying a governance code is mandatory in justifications. Options: Yes or No. |
| Always add user manager to approvers?* | Radio Button | Yes | Determines if the user's manager should be automatically added as an approver. Options: Yes or No. |
Messages
| Item | Type | Description |
|---|---|---|
| Execution message | Text Field | Defines the message displayed during execution. |
| Execution block message | Text Field | Defines the message displayed when execution is blocked. |