Overview
EPM Windows provides credential queries in offline mode. When EPM tries to establish a connection with the Segura platform and fails three times, it activates the offline mode automatically. There is no need for configuration or activation by the user.
If the applications (Core and Vault) disconnect from the Segura platform, the user can perform actions based on the last synchronized policies. By default, policies are synced every 15 min.
A synchronization of credentials occurs every 15 minutes by default. It is not recommended to set a time interval of lower than 15 minutes because excessive queries can influence the performance of the Segura server.
Enable offline mode
Offline mode is enabled in the following situations:
- Right after registering the agent on the Segura platform.
- Before making any request to the Segura platform.
- Whenever the Go Service restarts.
- If there are changes to the network adapters of the machine.
View events
EPM synchronizes the logs of actions performed by the user with the Segura platform as soon as the application returns to online mode. During the period when the application is offline, logs are securely stored locally. See the article Event report for more information about logs.
If there are restrictions such as Denylists, the rules will continue to apply.
Features that are unavailable when there is no connection to the Segura platform
The users will receive a message on their workstation when trying to perform one of these actions.
- Update
- Malware analysis
- Access to credentials
- Automation
- UAC
- Policy Update
- Single sign-on
- Approval workflow
Only approval workflow with emergency access works in offline mode.
To create a network share, you don’t need credentials. Its operation is the same as the online mode; the sharing is always with the user who ran EPM.