Some information allows the use of wildcard or masks. And these entities have attributes that can be used as a filter:īy using these combinations of attributes you determine what information a group of users will have access to. In the PAM Core module, the segregated entity is the SSH credentials and keys. Restriction levels are based on the number of steps and people who are aware of the operation:Īllow access by requiring justification of the requesterĪllow access within a time range and an approver If the user has more than one access group that gives them access to privileged information, senhasegura will apply the most restrictive group rule. To avoid misuse, senhasegura queries the rules applied to the user that connects the privileged entity. Actions that can be taken also affect these privileged entities. Segregated entities and their propertiesĪll screens that a user has access to display information from privileged entities are filtered by the Access Group. In this topic, we will talk about the access group of the PAM module, which has access control to credentials and their use. This allows the Administrator to deliver different levels of security to the same user within their assignments in each product. The configuration of groups can be seen in several products of the senhasegura platform: In this way, we add another layer of security to ensure the principle of least privilege.Īccess Groups act as a filter for entities from their properties. Now we will learn how to limit the data that the user can act on. Through the senhasegura permission system, we learn how to segregate the actions that a user can perform within the platform.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |