The following tables lists default policy settings and configurations in the systems. System administrators can modify these values as needed to change the behavior of specific modules and features within the application.

To modify default system settings, go to SystemSystem Default:


Parameter

Default value

Allowed value(s)

Purpose

1

Account Password Change Max Failed Attempts

3

0-999

Set a value of how many times password change attempts are made by vault for automated password changes. It is recommended to keep a value lower than your policy set at the asset level.

2

Account Password Checkout Timeout (Seconds)

30

1-999

Set a value (in seconds) to display the checked-out password on the screen when a user checks out a password.

3

Account Password Rotation Max No Of Threads

5

1-2999

Set a value to run X number of threads for password changes jobs.

4

Allow Edit User Logon Name

0

0-1

Configure the value as 1 in case you want to allow updation of the username by administrator

5Allow Permanent Deletion Of Account00-1Configure the value as 1 in case you want to allow permanent deletion of the accounts from the system
6Allow Permanent Deletion Of Asset00-1Configure the value as 1 in case you want to allow permanent deletion of the assets from the system
7Allow Permanent Deletion Of User00-1Configure the value as 1 in case you want to allow permanent deletion of the users from the system
8

Allow Vault Access From Thin Client

1

0-1

Configure the value as 1 in case you want to allow the access of vault using thin client

9

Analytical Reports - Max Record To Show

5000

1-99999

Configure a value to set the maximum limit for analytical reports to be displayed on UI

10

Application - Host Header Injection Validation

NA

Domain name/hostname to be validated in every request header

Configure a value to set the condition for the server to respond back when one hits the URL of PAM

11

Application - Session Page Refresh Validation

0

0-1

Configure the value as 1 in case you want to validate page refresh event to avoid resubmitting last post back event

12

Application - Session Security Validation

0

0-1

Configure the value as 1 in case you want to allow users to work on multiple tabs at the same time 

13

Application - Session Source IP Validation

0

0-1

Configure the value as 1 in case you want to validate user session source IP Address with requesting IP Address

14

Asset Status Timeout (Milliseconds)

200

100-5000

Configure a value to set the timeout for connectivity of an asset

15

Auto Assign Instance to User on Creation

1

0-1

Configure the value as 1 to auto assign default instance when the user is created

16

AutoStart AppService - AccountDiscovery

0

0-1

Configure the value as 1 to auto start AccountDiscovery service

17

AutoStart AppService - AccountManagement

0

0-1

Configure the value as 1 to auto start AccountManagement service

18

AutoStart AppService - AccountsLifecycle 

0

0-1

Configure the value as 1 to auto start AccountsLifecycle service

19

AutoStart AppService - AssetADSync

0

0-1

Configure the value as 1 to auto start AssetADSync service

20

AutoStart AppService - AssetDiscovery

0

0-1

Configure the value as 1 to auto start AssetDiscovery service

21

AutoStart AppService - AssetStatus

1

0-1

Configure the value as 1 to auto start AssetStatus service

22AutoStart AppService - EPMAgentServer00-1Configure the value as 1 to auto start EPMAgentServer service
23

AutoStart AppService - EPMManagement

0

0-1

Configure the value as 1 to auto start EPMManagement service

24

AutoStart AppService - Notification

0

0-1

Configure the value as 1 to auto start Notification service

25

AutoStart AppService - PasswordManagement

0

0-1

Configure the value as 1 to auto start PasswordManagement service

26

AutoStart AppService - PasswordStatusMonitoring

0

0-1

Configure the value as 1 to auto start PasswordStatusMonitoring service

27

AutoStart AppService - SatelliteVault

0

0-1

Configure the value as 1 to auto start SatelliteVault service

28

AutoStart AppService - SessionManagement

1

0-1

Configure the value as 1 to auto start SessionManagement service

29

AutoStart AppService - SpectraWorkflow 

0

0-1

Configure the value as 1 to auto start SpectraWorkflow service

30AutoStart AppService - SystemCache10-1Configure the value as 1 to auto start SystemCache service
31

AutoStart AppService - SystemCleanup

0

0-1

Configure the value as 1 to auto start SystemCleanup service

32

AutoStart AppService - SystemBackup

0

0-1

Configure the value as 1 to auto start SystemBackup service

33

AutoStart AppService - SystemEvent

0

0-1

Configure the value as 1 to auto start SystemEvent service

34

AutoStart AppService - SystemHighAvailability

0

0-1

Configure the value as 1 to auto start SystemHighAvailability service

35

AutoStart AppService - SystemLogManagement

0

0-1

Configure the value as 1 to auto start SystemLogManagement service

36

AutoStart AppService - SystemManagement

0

0-1

Configure the value as 1 to auto start SystemManagement service

37

AutoStart AppService - SystemReporting

0

0-1

Configure the value as 1 to auto start SystemReporting service

38

AutoStart AppService - UserManagement

0

0-1

Configure the value as 1 to auto start UserManagement service

39

AutoStart AppService - UserStatus

1

0-1

Configure the value as 1 to auto start UserStatus service

40

AutoStart AppService - WebAppHighAvailability

0

0-1

Configure the value as 1 to auto start WebAppHighAvailability service

41

Browser RDP Version

2

1-2

Configure a value to set the version for RDP over Browser

42Collect Asset Information Hours - EPMAgentServer241-999Configure a value to retrieve EPM asset information like Administrators, Processes, Softwares and Agent status
43Enable Secure Link For Account Credentials00-1Configure the value as 1 to send a secure link for password checkout when password access is requested
44Enable Session Video Logs Server00-1Configure the value as 1 to enable session video log server to store session recordings
45

From Header Default Date Range

7

1-30

Configure a value to set date range to be appeared in the header

46Group Mapping Process Version11-2Configure a value to select version for account group and user group mapping process
47

Jump Server Startup Program

C:\\Sectona.Client.Vault\\Sectona.Client.Vault.exe

Any path from the system (Sectona Client Vault should be present at the specified path)

Configure a path of startup program for Jump Server

48

Network Discovery Timeout (Minutes)

30

1-999

Configure a value to set timeout limit for network discovery job

49Process Run Every Days - SystemCleanup301-999Configure a value to set recurring day to run the SystemCleanup service
50

Re-authenticate User On Session Reconnect

0

0-1

Configure the value as 1 to authenticate user every time the session gets reconnected

51

Risk View Default No of From Days

25

1-30

Configure a value to set the maximum limit for days from which risk viewgraph can be drawn

52

Route Account Operation Via SessionProxy

0

0-1

Configure the value as 1 to operate account operations such as password change through session proxy

53

Sectona URI Launcher Client Root Directory

temp

temp or AppData

Configure a directory to store client session information

54

Sectona URI Launcher Client Sub Directory

Sectona

Any Directory name

Configure a sub directory for storing client session information

55

Sectona URI Launcher System Client Version

1100

1100-9999

Configure the appropriate value to specify current System Client Version

56

Session Management Keep Alive Time (Minutes)

3

1-9

Configure a value to set limit for session to be terminated after inactivity

57

Session View Default No of From Days

7

1-30

Configure a value to set maximum limit for session view to be displayed

58

Show Asset Filters On MyAccess UI

0

0-1

Configure the value as 1 to make asset filters visible on MyAccess page

59

Show MFA AccessKeys On UI

0

0-1

Configure the value as 1 to make MFA secret and shared keys visible on UI

60

Support License Expiry Alert Before (Days)

5

0-99

Configure a value to set the limit for support license expiry alert

61Sync User Status From Directory Store In UserStatusService00-1Configure the value as 1 to syc Active directory user operations with PAM, so that if a user is disabled or deleted from AD then it will be marked inactive on PAM.
62

Syslogs Retention Period In Days

90

30-9999

Configure a value for the syslog to be retained in the system

63

System License Expiry Alert Before (Days)

5

1-99

Configure a value to set limit for system license expiry alert

64

TriggerInterval AppService - AccountDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountDiscovery service

65

TriggerInterval AppService - AccountManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for AccountManagement service

66

TriggerInterval AppService - AccountsLifecycle (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountsLifecycle service

67

TriggerInterval AppService - AssetADSync (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetADSync service

68

TriggerInterval AppService - AssetDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetDiscovery service

69

TriggerInterval AppService - AssetStatus (Minutes)

5

1-9999

Configure a value to set trigger interval time for AssetStatus service

70

TriggerInterval AppService - EPMManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for EPMManagement service

71

TriggerInterval AppService - Notification (Minutes)

2

1-9999

Configure a value to set trigger interval time for Notification service

72

TriggerInterval AppService - PasswordManagement (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordManagement service

73

TriggerInterval AppService - PasswordStatusMonitoring (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordStatusMonitoring service

74

TriggerInterval AppService - SatelliteVault (Minutes)

60

1-9999

Configure a value to set trigger interval time for SatelliteVault service

75

TriggerInterval AppService - SessionManagement (Minutes)

1

1-9999

Configure a value to set trigger interval time for SessionManagement service

76

TriggerInterval AppService - SpectraWorkflow (Minutes)

1

1-9999

Configure a value to set trigger interval time for SpectraWorkflow service

77TriggerInterval AppService - SystemCache (Minutes)51-9999Configure a value to set trigger interval time for SystemCache service
78

TriggerInterval AppService - SystemCleanup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemCleanup service

79

TriggerInterval AppService - SystemBackup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemBackup service

80

TriggerInterval AppService - SystemEvent (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemEvent service

81

TriggerInterval AppService - SystemHighAvailability (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemHighAvailability service

82

TriggerInterval AppService - SystemLogManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemLogManagement service

83

TriggerInterval AppService - SystemManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemManagement service

84

TriggerInterval AppService - SystemReporting (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemReporting service

85

TriggerInterval AppService - UserManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for UserManagement service

86

TriggerInterval AppService - UserStatus (Minutes)

300

1-9999

Configure a value to set trigger interval time for UserStatus service

87

TriggerInterval AppService - WebAppHighAvailability (Minutes)

1

1-9999

Configure a value to set trigger interval time for WebAppHighAvailability service

88Use Secondary IP Of Asset00-1Configure the value as 1 to make Secondary IP field visible on Add Asset page
89Use ProcessServer For AppService00-1Configure the value as 1 to make for not configurable app services to run in separate process on same server where core application runs
90Use RDPD Proxy for Launcher Based RDP Session00-1Configure the value as 1 to bypass RDPD proxy from launcher based RDP session
91

User Logon Show SAML Option

0

0-1

Configure the value as 1 to make SAML option visible on User Login page

92

User Session Lockout (Minutes)

20

0-9999

Configure a value to set limit to lock user session

93User Session Risk Scoring Calculation10-1Configure the value as 0 to hide Risk View and Risk Score from user sessions
94

Vault Client Communication Protocol Version

1

1-2

Configure a value to set communication protocol version for Sectona Launcher and web application

95

Vault Client Connection Timeout (In Seconds)

100

1-100

Configure a value to set the timeout for Vault Client Connection

96

Video Log Default Timer Interval (Milliseconds)

1000

1-9999

Configure a value to set time interval between two consecutive frames of video logs

97

Web Application Load Balancing (Between P1-P2)

0

0-1

Configure the value as 1 to activate load balancing

98

Web Session Timeout (Minutes)

20

1-999

Configure a value to set the timeout for Web Session

  • Last modified by: This defines the last modification in the parameter values is done by whom.

  • Last modified on: This defines the last date and time the parameter values were modified on.


The following tables lists default policy settings and configurations in the systems. System administrators can modify these values as needed to change the behavior of specific modules and features within the application.

To modify default system settings, go to SystemSystem Default:


Parameter

Default value

Allowed value(s)

Purpose

1

Account Password Change Max Failed Attempts

3

0-999

Set a value of how many times password change attempts are made by vault for automated password changes. It is recommended to keep a value lower than your policy set at the asset level.

2

Account Password Checkout Timeout (Seconds)

30

1-999

Set a value (in seconds) to display the checked-out password on the screen when a user checks out a password.

3

Account Password Rotation Max No Of Threads

5

1-2999

Set a value to run X number of threads for password changes jobs.

4

Allow Edit User Logon Name

0

0-1

Configure the value as 1 in case you want to allow updation of the username by administrator

5

Allow Vault Access From Thin Client

1

0-1

Configure the value as 1 in case you want to allow the access of vault using thin client

6

Analytical Reports - Max Record To Show

5000

1-99999

Configure a value to set the maximum limit for analytical reports to be displayed on UI

7

Application - Host Header Injection Validation

NA

Domain name/hostname to be validated in every request header

Configure a value to set the condition for the server to respond back when one hits the URL of PAM

8

Application - Session Page Refresh Validation

0

0-1

Configure the value as 1 in case you want to validate page refresh event to avoid resubmitting last post back event

9

Application - Session Security Validation

0

0-1

Configure the value as 1 in case you want to allow users to work on multiple tabs at the same time 

10

Application - Session Source IP Validation

0

0-1

Configure the value as 1 in case you want to validate user session source IP Address with requesting IP Address

11

Asset Status Timeout (Milliseconds)

200

100-5000

Configure a value to set the timeout for connectivity of an asset

12

Auto Assign Instance to User on Creation

1

0-1

Configure the value as 1 to auto assign default instance when the user is created

13

AutoStart AppService - AccountDiscovery

0

0-1

Configure the value as 1 to auto start AccountDiscovery service

14

AutoStart AppService - AccountManagement

0

0-1

Configure the value as 1 to auto start AccountManagement service

15

AutoStart AppService - AccountsLifecycle 

0

0-1

Configure the value as 1 to auto start AccountsLifecycle service

16

AutoStart AppService - AssetADSync

0

0-1

Configure the value as 1 to auto start AssetADSync service

17

AutoStart AppService - AssetDiscovery

0

0-1

Configure the value as 1 to auto start AssetDiscovery service

18

AutoStart AppService - AssetStatus

1

0-1

Configure the value as 1 to auto start AssetStatus service

19

AutoStart AppService - EPMManagement

0

0-1

Configure the value as 1 to auto start EPMManagement service

20

AutoStart AppService - Notification

0

0-1

Configure the value as 1 to auto start Notification service

21

AutoStart AppService - PasswordManagement

0

0-1

Configure the value as 1 to auto start PasswordManagement service

22

AutoStart AppService - PasswordStatusMonitoring

0

0-1

Configure the value as 1 to auto start PasswordStatusMonitoring service

23

AutoStart AppService - SatelliteVault

0

0-1

Configure the value as 1 to auto start SatelliteVault service

24

AutoStart AppService - SessionManagement

1

0-1

Configure the value as 1 to auto start SessionManagement service

25

AutoStart AppService - SpectraWorkflow 

0

0-1

Configure the value as 1 to auto start SpectraWorkflow service

26

AutoStart AppService - SystemCleanup

0

0-1

Configure the value as 1 to auto start SystemCleanup service

27

AutoStart AppService - SystemBackup

0

0-1

Configure the value as 1 to auto start SystemBackup service

28

AutoStart AppService - SystemEvent

0

0-1

Configure the value as 1 to auto start SystemEvent service

29

AutoStart AppService - SystemHighAvailability

0

0-1

Configure the value as 1 to auto start SystemHighAvailability service

30

AutoStart AppService - SystemLogManagement

0

0-1

Configure the value as 1 to auto start SystemLogManagement service

31

AutoStart AppService - SystemManagement

0

0-1

Configure the value as 1 to auto start SystemManagement service

32

AutoStart AppService - SystemReporting

0

0-1

Configure the value as 1 to auto start SystemReporting service

33

AutoStart AppService - UserManagement

0

0-1

Configure the value as 1 to auto start UserManagement service

34

AutoStart AppService - UserStatus

1

0-1

Configure the value as 1 to auto start UserStatus service

35

AutoStart AppService - WebAppHighAvailability

0

0-1

Configure the value as 1 to auto start WebAppHighAvailability service

36

Browser RDP Version

2

1-2

Configure a value to set the version for RDP over Browser

37Enable Secure Link For Account Credentials00-1Configure the value as 1 to send a secure link for password checkout when password access is requested
38

From Header Default Date Range

7

1-30

Configure a value to set date range to be appeared in the header

39

Jump Server Startup Program

C:\\Sectona.Client.Vault\\Sectona.Client.Vault.exe

Any path from the system (Sectona Client Vault should be present at the specified path)

Configure a path of startup program for Jump Server

40

Network Discovery Timeout (Minutes)

30

1-999

Configure a value to set timeout limit for network discovery job

41

Re-authenticate User On Session Reconnect

0

0-1

Configure the value as 1 to authenticate user every time the session gets reconnected

42

Risk View Default No of From Days

25

1-30

Configure a value to set the maximum limit for days from which risk viewgraph can be drawn

43

Route Account Operation Via SessionProxy

0

0-1

Configure the value as 1 to operate account operations such as password change through session proxy

44

Sectona URI Launcher Client Root Directory

temp

temp or AppData

Configure a directory to store client session information

45

Sectona URI Launcher Client Sub Directory

Sectona

Any Directory name

Configure a sub directory for storing client session information

46

Sectona URI Launcher System Client Version

1100

1100-9999

Configure the appropriate value to specify current System Client Version

47

Session Management Keep Alive Time (Minutes)

3

1-9

Configure a value to set limit for session to be terminated after inactivity

48

Session View Default No of From Days

7

1-30

Configure a value to set maximum limit for session view to be displayed

49

Show Asset Filters On MyAccess UI

0

0-1

Configure the value as 1 to make asset filters visible on MyAccess page

50

Show MFA AccessKeys On UI

0

0-1

Configure the value as 1 to make MFA secret and shared keys visible on UI

51

Support License Expiry Alert Before (Days)

5

0-99

Configure a value to set the limit for support license expiry alert

52

Syslogs Retention Period In Days

90

30-9999

Configure a value for the syslog to be retained in the system

53

System License Expiry Alert Before (Days)

5

1-99

Configure a value to set limit for system license expiry alert

54

TriggerInterval AppService - AccountDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountDiscovery service

55

TriggerInterval AppService - AccountManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for AccountManagement service

56

TriggerInterval AppService - AccountsLifecycle (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountsLifecycle service

57

TriggerInterval AppService - AssetADSync (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetADSync service

58

TriggerInterval AppService - AssetDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetDiscovery service

59

TriggerInterval AppService - AssetStatus (Minutes)

5

1-9999

Configure a value to set trigger interval time for AssetStatus service

60

TriggerInterval AppService - EPMManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for EPMManagement service

61

TriggerInterval AppService - Notification (Minutes)

2

1-9999

Configure a value to set trigger interval time for Notification service

62

TriggerInterval AppService - PasswordManagement (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordManagement service

63

TriggerInterval AppService - PasswordStatusMonitoring (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordStatusMonitoring service

64

TriggerInterval AppService - SatelliteVault (Minutes)

60

1-9999

Configure a value to set trigger interval time for SatelliteVault service

65

TriggerInterval AppService - SessionManagement (Minutes)

1

1-9999

Configure a value to set trigger interval time for SessionManagement service

66

TriggerInterval AppService - SpectraWorkflow (Minutes)

1

1-9999

Configure a value to set trigger interval time for SpectraWorkflow service

67

TriggerInterval AppService - SystemCleanup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemCleanup service

68

TriggerInterval AppService - SystemBackup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemBackup service

69

TriggerInterval AppService - SystemEvent (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemEvent service

70

TriggerInterval AppService - SystemHighAvailability (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemHighAvailability service

71

TriggerInterval AppService - SystemLogManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemLogManagement service

72

TriggerInterval AppService - SystemManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemManagement service

73

TriggerInterval AppService - SystemReporting (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemReporting service

74

TriggerInterval AppService - UserManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for UserManagement service

75

TriggerInterval AppService - UserStatus (Minutes)

300

1-9999

Configure a value to set trigger interval time for UserStatus service

76

TriggerInterval AppService - WebAppHighAvailability (Minutes)

1

1-9999

Configure a value to set trigger interval time for WebAppHighAvailability service

77Use Secondary IP Of Asset00-1Configure the value as 1 to make Secondary IP field visible on Add Asset page
78

User Logon Show SAML Option

0

0-1

Configure the value as 1 to make SAML option visible on User Login page

79

User Session Lockout (Minutes)

20

0-9999

Configure a value to set limit to lock user session

80User Session Risk Scoring Calculation10-1Configure the value as 0 to hide Risk View and Risk Score from user sessions
81

Vault Client Communication Protocol Version

1

1-2

Configure a value to set communication protocol version for Sectona Launcher and web application

82

Vault Client Connection Timeout (In Seconds)

100

1-100

Configure a value to set the timeout for Vault Client Connection

83

Video Log Default Timer Interval (Milliseconds)

1000

1-9999

Configure a value to set time interval between two consecutive frames of video logs

84

Web Application Load Balancing (Between P1-P2)

0

0-1

Configure the value as 1 to activate load balancing

85

Web Session Timeout (Minutes)

20

1-999

Configure a value to set the timeout for Web Session

  • Last modified by: This defines the last modification in the parameter values is done by whom.

  • Last modified on: This defines the last date and time the parameter values were modified on.