This document provides information about the Segregated Parameters report screen, which displays details about the segregated parameters configured in the EPM module.
Access Path
- In Segura, on the navigation bar, hover over Product Menu and select EPM.
- In the sidebar, select Management > Settings > Segregated Parameters.
Action Menu
| Item |
Type |
Description |
| Add |
Button |
Directs to the Segregation screen. |
| Actions |
Dropdown menu |
Displays options related to managing the segregated parameters. |
Search Fields
| Item |
Type |
Description |
| Code |
Text field |
Filters parameters by their identification code. |
| Type |
Dropdown menu |
Filters parameters by type. The default option is All. |
| Name |
Text field |
Filters parameters by name. |
| Status |
Dropdown menu |
Filters parameters by their activation state. The default option is Active. |
| Include |
Date picker |
Filters parameters by the inclusion date. |
| Change date |
Date picker |
|
Report Fields
- Code: numeric identifier of the segregated parameter.
- Type: type of the segregated parameter (for example, User).
- Name: descriptive name of the segregated parameter.
- Status: indicates whether the parameter is active or inactive.
- Include: date and time when the parameter was included in the system.
- Inclusion User: user who included the parameter in the system.
- Change Date: date and time of the last parameter modification.
- User of Change: user who performed the last parameter modification.
- Actions:
- Details: directs to the Segregated Parameters screen, displaying the record details.
- Edit: directs to the Segregation screen in edit mode.
- Disable: deactivates the segregated parameter.
Segregation - User
This section provides information about the Segregation screen, which allows configuring segregated parameters for users in EPM.
General Tab
| Item |
Type |
Required |
Description |
| Name* |
Text field |
Yes |
Identifying name of the segregated parameter. |
| Enabled* |
Radio button |
Yes |
Sets whether the parameter is active. Options: Yes or No. |
| Enable offline use?* |
Radio button |
Yes |
Sets how offline use will be handled. Options: System Default, Yes, or No. |
| Enable UAC integration?* |
Radio button |
Yes |
Sets how integration with UAC will be handled. Options: System Default, Yes, or No. |
| Enable recording session?* |
Radio button |
Yes |
Sets whether session recording will be allowed. Options: System Default, Yes, or No. |
| Enable application malware and reputation scan?* |
Radio button |
Yes |
Sets whether malware scanning will be enabled. Options: System Default, Yes, or No. |
| Enable vault?* |
Radio button |
Yes |
Sets whether the vault will be enabled. Options: System Default, Yes, or No. |
| Minutes interval to request credentials |
Quantity picker |
No |
Sets the interval in minutes to request credentials. |
General Tab
| Item |
Type |
Required |
Description |
| Block network access?* |
Radio button |
Yes |
Sets whether network access will be blocked. Options: System Default, Yes, or No. |
| Block user |
Dropdown menu |
No |
Allows selecting users to block. |
| Occurrences (minimum) |
Quantity picker |
No |
Sets the minimum number of occurrences. |
| Enable DLL analysis?* |
Radio button |
Yes |
Sets whether DLL analysis will be enabled. Options: System Default, Yes, or No. |
| Enable JIT access?* |
Radio button |
Yes |
Sets whether Just-In-Time access will be enabled. Options: System Default, Yes, or No. |
| Add |
Button |
No |
Opens the Directory path modal to add a new directory to the New trusted directory table. |
| New trusted directory |
Table |
No |
Allows adding trusted directories. |
| Add |
Button |
No |
Opens the Directory path modal to add a new directory to the Directory to be ignore table. |
| Directory to ignore |
Table |
No |
Allows adding directories to be ignored. |
| VirusTotal API Token |
Text field |
No |
Access token for the VirusTotal API. |
Modules Tab
| Item |
Type |
Required |
Description |
| Enable credentials?* |
Radio button |
Yes |
Sets whether the credentials module will be enabled. Options: System Default, Yes, or No. |
| Enable applications?* |
Radio button |
Yes |
Sets whether the applications module will be enabled. Options: System Default, Yes, or No. |
| Enable uninstall?* |
Radio button |
Yes |
Sets whether uninstallation will be allowed. Options: System Default, Yes, or No. |
| Enable network share?* |
Radio button |
Yes |
Sets whether network sharing will be enabled. Options: System Default, Yes, or No. |
| Enable network interface?* |
Radio button |
Yes |
Sets whether the network interface will be enabled. Options: System Default, Yes, or No. |
| Enable control panel?* |
Radio button |
Yes |
Sets whether the control panel will be enabled. Options: System Default, Yes, or No. |
| Enable multifactor authentication at login?* |
Radio button |
Yes |
Sets whether multifactor authentication at login will be enabled. Options: System Default, Yes, or No. |
| Enable multifactor authentication to elevate applications?* |
Radio button |
Yes |
Sets whether multifactor authentication for application elevation will be enabled. Options: System Default, Yes, or No. |
| Enable Single Sign-On?* |
Radio button |
Yes |
Sets whether Single Sign-On will be enabled. Options: System Default, Yes, or No. |
Messages Tab
| Item |
Type |
Description |
| Execution Message |
Text area |
Allows defining a personalized message to be displayed during execution. |
| Execution Block Message |
Text area |
Allows defining a personalized message to be displayed when an execution is blocked. |
Users Tab
| Item |
Type |
Description |
| Add |
Button |
Opens the Users modal to add a new user to the Users table. |
| Users |
Table |
Contains information about users, with fields Code, Username, and Domain. |
Users Modal
| Item |
Type |
Description |
| Search |
Text field |
Searches for a specific user on the Segura platform. |
| ID |
Text field |
Identification code of the user. |
| Username |
Text field |
Username of the user. |
| Domain |
Text field |
Domain to which the user belongs. |
Segregation - Devices
Among the segregated parameters for users and devices, the only difference is the Users tab, which becomes Devices.
Devices Tab
| Item |
Type |
Description |
| Add |
Button |
Opens the Devices modal to add a new entry to the Devices table. |
| Devices |
Table |
Contains information about devices, with fields Code, Hostname, Domain, IP, and Operating System. |
Devices Modal
| Item |
Type |
Description |
| Search |
Text field |
Searches for device records on the Segura platform. |
| ID |
Text field |
Identifier code of the device. |
| Hostname |
Text field |
Hostname of the device. |
| Domain |
Text field |
Domain to which the device belongs. |
| IP |
Text field |
IP address of the device. |
| Operating System |
Text field |
Operating system of the device. |
Segregated Parameters - Details
This section describes the details screen of the segregated parameters in EPM Windows.
General Tab
| Item |
Type |
Description |
| Name |
Text field |
Displays the identifying name of the segregated parameter. |
| Active |
Text field |
Displays whether the parameter is active. |
| Enable Offline Use |
Text field |
Displays whether offline use is enabled. |
| Enable UAC integration |
Text field |
Displays whether UAC integration is enabled. |
| Enable Record Session |
Text field |
Displays whether session recording is enabled. |
| Enable Application Analysis |
Text field |
Displays whether application analysis is enabled. |
| Enable Vault |
Text field |
Displays whether the vault is enabled. |
| Vault Request Minutes Interval |
Text field |
Displays the interval in minutes for credential request. |
General Tab
| Item |
Type |
Description |
| Block Access Network |
Text field |
Displays whether network access blocking is enabled. |
| Block User Access Network |
Text field |
Displays whether blocking of user network access is enabled. |
| Block User Access Network Attempts |
Text field |
Displays the allowed number of attempts (1). |
| Enable DLL Analysis |
Text field |
Displays whether DLL analysis is enabled (Yes). |
| Enable JIT |
Text field |
Displays whether Just-In-Time access is enabled (Yes). |
| Trusted Directories |
Text field |
Displays the configured trusted directories. |
| Ignored Directories |
Text field |
Displays the directories to be ignored. |
Modules Tab
| Item |
Type |
Description |
| Enable Module Credentials |
Text field |
Displays whether the credentials module is enabled (Yes). |
| Enable Module Applications |
Text field |
Displays whether the applications module is enabled (Yes). |
| Enable Module Uninstaller |
Text field |
Displays whether the uninstallation module is enabled (Yes). |
| Enable Module Network Share |
Text field |
Displays whether the network share module is enabled (Yes). |
| Enable Module Network Interface |
Text field |
Displays whether the network interface module is enabled (Yes). |
| Enable Module Control Panel |
Text field |
Displays whether the control panel module is enabled (Yes). |
| Enable MFA Login |
Text field |
Displays whether multifactor authentication at login is enabled (Yes). |
| Enable MFA Elevation |
Text field |
Displays whether multifactor authentication for elevation is enabled (Yes). |
| Enable Single Sign-On |
Text field |
Displays whether Single Sign-On is enabled (Yes). |
Messages Tab
| Item |
Type |
Description |
| Execution Message |
Text field |
Displays the configured message to be shown during execution. |
| Execution Block Message |
Text field |
Displays the configured message to be shown when an execution is blocked. |