The following tables lists default policy settings and configurations in the systems. System administrators can modify these values as needed to change the behavior of specific modules and features within the application.

To modify default system settings, go to SystemSystem Default:


Parameter

Default value

Allowed value(s)

Purpose

1

Account Password Change Max Failed Attempts

3

0-999

Set a value of how many times password change attempts are made by vault for automated password changes. It is recommended to keep a value lower than your policy set at the asset level.

2

Account Password Checkout Timeout (Seconds)

30

1-999

Set a value (in seconds) to display the checked-out password on the screen when a user checks out a password.

3

Account Password Rotation Max No Of Threads

5

1-2999

Set a value to run X number of threads for password changes jobs.

4

Allow Edit User Logon Name

0

0-1

Configure the value as 1 in case you want to allow updation of the username by administrator

5

Allow Vault Access From Thin Client

1

0-1

Configure the value as 1 in case you want to allow the access of vault using thin client

6

Analytical Reports - Max Record To Show

5000

1-99999

Configure a value to set the maximum limit for analytical reports to be displayed on UI

7

Application - Host Header Injection Validation

NA

Domain name/hostname to be validated in every request header

Configure a value to set the condition for the server to respond back when one hits the URL of PAM

8

Application - Session Page Refresh Validation

0

0-1

Configure the value as 1 in case you want to validate page refresh event to avoid resubmitting last post back event

9

Application - Session Security Validation

0

0-1

Configure the value as 1 in case you want to allow users to work on multiple tabs at the same time 

10

Application - Session Source IP Validation

0

0-1

Configure the value as 1 in case you want to validate user session source IP Address with requesting IP Address

11

Asset Status Timeout (Milliseconds)

200

100-5000

Configure a value to set the timeout for connectivity of an asset

12

Auto Assign Instance to User on Creation

1

0-1

Configure the value as 1 to auto assign default instance when the user is created

13

AutoStart AppService - AccountDiscovery

0

0-1

Configure the value as 1 to auto start AccountDiscovery service

14

AutoStart AppService - AccountManagement

0

0-1

Configure the value as 1 to auto start AccountManagement service

15

AutoStart AppService - AccountsLifecycle 

0

0-1

Configure the value as 1 to auto start AccountsLifecycle service

16

AutoStart AppService - AssetADSync

0

0-1

Configure the value as 1 to auto start AssetADSync service

17

AutoStart AppService - AssetDiscovery

0

0-1

Configure the value as 1 to auto start AssetDiscovery service

18

AutoStart AppService - AssetStatus

1

0-1

Configure the value as 1 to auto start AssetStatus service

19AutoStart AppService - EPMAgentServer00-1Configure the value as 1 to auto start EPMAgentServer service
20

AutoStart AppService - EPMManagement

0

0-1

Configure the value as 1 to auto start EPMManagement service

21

AutoStart AppService - Notification

0

0-1

Configure the value as 1 to auto start Notification service

22

AutoStart AppService - PasswordManagement

0

0-1

Configure the value as 1 to auto start PasswordManagement service

23

AutoStart AppService - PasswordStatusMonitoring

0

0-1

Configure the value as 1 to auto start PasswordStatusMonitoring service

24

AutoStart AppService - SatelliteVault

0

0-1

Configure the value as 1 to auto start SatelliteVault service

25

AutoStart AppService - SessionManagement

1

0-1

Configure the value as 1 to auto start SessionManagement service

26

AutoStart AppService - SpectraWorkflow 

0

0-1

Configure the value as 1 to auto start SpectraWorkflow service

27AutoStart AppService - SystemCache10-1Configure the value as 1 to auto start SystemCache service
28

AutoStart AppService - SystemCleanup

0

0-1

Configure the value as 1 to auto start SystemCleanup service

29

AutoStart AppService - SystemBackup

0

0-1

Configure the value as 1 to auto start SystemBackup service

30

AutoStart AppService - SystemEvent

0

0-1

Configure the value as 1 to auto start SystemEvent service

31

AutoStart AppService - SystemHighAvailability

0

0-1

Configure the value as 1 to auto start SystemHighAvailability service

32

AutoStart AppService - SystemLogManagement

0

0-1

Configure the value as 1 to auto start SystemLogManagement service

33

AutoStart AppService - SystemManagement

0

0-1

Configure the value as 1 to auto start SystemManagement service

34

AutoStart AppService - SystemReporting

0

0-1

Configure the value as 1 to auto start SystemReporting service

35

AutoStart AppService - UserManagement

0

0-1

Configure the value as 1 to auto start UserManagement service

36

AutoStart AppService - UserStatus

1

0-1

Configure the value as 1 to auto start UserStatus service

37

AutoStart AppService - WebAppHighAvailability

0

0-1

Configure the value as 1 to auto start WebAppHighAvailability service

38

Browser RDP Version

2

1-2

Configure a value to set the version for RDP over Browser

39Collect Asset Information Hours - EPMAgentServer241-999Configure a value to retrieve EPM asset information like Administrators, Processes, Softwares and Agent status
40Enable Secure Link For Account Credentials00-1Configure the value as 1 to send a secure link for password checkout when password access is requested
41

From Header Default Date Range

7

1-30

Configure a value to set date range to be appeared in the header

42Group Mapping Process Version11-2Configure a value to select version for account group and user group mapping process
43

Jump Server Startup Program

C:\\Sectona.Client.Vault\\Sectona.Client.Vault.exe

Any path from the system (Sectona Client Vault should be present at the specified path)

Configure a path of startup program for Jump Server

44

Network Discovery Timeout (Minutes)

30

1-999

Configure a value to set timeout limit for network discovery job

45Process Run Every Days - SystemCleanup301-999Configure a value to set recurring day to run the SystemCleanup service
46

Re-authenticate User On Session Reconnect

0

0-1

Configure the value as 1 to authenticate user every time the session gets reconnected

47

Risk View Default No of From Days

25

1-30

Configure a value to set the maximum limit for days from which risk viewgraph can be drawn

48

Route Account Operation Via SessionProxy

0

0-1

Configure the value as 1 to operate account operations such as password change through session proxy

49

Sectona URI Launcher Client Root Directory

temp

temp or AppData

Configure a directory to store client session information

50

Sectona URI Launcher Client Sub Directory

Sectona

Any Directory name

Configure a sub directory for storing client session information

51

Sectona URI Launcher System Client Version

1100

1100-9999

Configure the appropriate value to specify current System Client Version

52

Session Management Keep Alive Time (Minutes)

3

1-9

Configure a value to set limit for session to be terminated after inactivity

53

Session View Default No of From Days

7

1-30

Configure a value to set maximum limit for session view to be displayed

54

Show Asset Filters On MyAccess UI

0

0-1

Configure the value as 1 to make asset filters visible on MyAccess page

55

Show MFA AccessKeys On UI

0

0-1

Configure the value as 1 to make MFA secret and shared keys visible on UI

56

Support License Expiry Alert Before (Days)

5

0-99

Configure a value to set the limit for support license expiry alert

57Sync User Status From Directory Store In UserStatusService00-1Configure the value as 1 to syc Active directory user operations with PAM, so that if a user is disabled or deleted from AD then it will be marked inactive on PAM.
58

Syslogs Retention Period In Days

90

30-9999

Configure a value for the syslog to be retained in the system

59

System License Expiry Alert Before (Days)

5

1-99

Configure a value to set limit for system license expiry alert

60

TriggerInterval AppService - AccountDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountDiscovery service

61

TriggerInterval AppService - AccountManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for AccountManagement service

62

TriggerInterval AppService - AccountsLifecycle (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountsLifecycle service

63

TriggerInterval AppService - AssetADSync (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetADSync service

64

TriggerInterval AppService - AssetDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetDiscovery service

65

TriggerInterval AppService - AssetStatus (Minutes)

5

1-9999

Configure a value to set trigger interval time for AssetStatus service

66

TriggerInterval AppService - EPMManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for EPMManagement service

67

TriggerInterval AppService - Notification (Minutes)

2

1-9999

Configure a value to set trigger interval time for Notification service

68

TriggerInterval AppService - PasswordManagement (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordManagement service

69

TriggerInterval AppService - PasswordStatusMonitoring (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordStatusMonitoring service

70

TriggerInterval AppService - SatelliteVault (Minutes)

60

1-9999

Configure a value to set trigger interval time for SatelliteVault service

71

TriggerInterval AppService - SessionManagement (Minutes)

1

1-9999

Configure a value to set trigger interval time for SessionManagement service

72

TriggerInterval AppService - SpectraWorkflow (Minutes)

1

1-9999

Configure a value to set trigger interval time for SpectraWorkflow service

73TriggerInterval AppService - SystemCache (Minutes)51-9999Configure a value to set trigger interval time for SystemCache service
74

TriggerInterval AppService - SystemCleanup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemCleanup service

75

TriggerInterval AppService - SystemBackup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemBackup service

76

TriggerInterval AppService - SystemEvent (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemEvent service

77

TriggerInterval AppService - SystemHighAvailability (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemHighAvailability service

78

TriggerInterval AppService - SystemLogManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemLogManagement service

79

TriggerInterval AppService - SystemManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemManagement service

80

TriggerInterval AppService - SystemReporting (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemReporting service

81

TriggerInterval AppService - UserManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for UserManagement service

82

TriggerInterval AppService - UserStatus (Minutes)

300

1-9999

Configure a value to set trigger interval time for UserStatus service

83

TriggerInterval AppService - WebAppHighAvailability (Minutes)

1

1-9999

Configure a value to set trigger interval time for WebAppHighAvailability service

84Use Secondary IP Of Asset00-1Configure the value as 1 to make Secondary IP field visible on Add Asset page
85Use ProcessServer For AppService00-1Configure the value as 1 to make for not configurable app services to run in separate process on same server where core application runs
86Use RDPD Proxy for Launcher Based RDP Session00-1Configure the value as 1 to bypass RDPD proxy from launcher based RDP session
87

User Logon Show SAML Option

0

0-1

Configure the value as 1 to make SAML option visible on User Login page

88

User Session Lockout (Minutes)

20

0-9999

Configure a value to set limit to lock user session

89User Session Risk Scoring Calculation10-1Configure the value as 0 to hide Risk View and Risk Score from user sessions
90

Vault Client Communication Protocol Version

1

1-2

Configure a value to set communication protocol version for Sectona Launcher and web application

91

Vault Client Connection Timeout (In Seconds)

100

1-100

Configure a value to set the timeout for Vault Client Connection

92

Video Log Default Timer Interval (Milliseconds)

1000

1-9999

Configure a value to set time interval between two consecutive frames of video logs

93

Web Application Load Balancing (Between P1-P2)

0

0-1

Configure the value as 1 to activate load balancing

94

Web Session Timeout (Minutes)

20

1-999

Configure a value to set the timeout for Web Session

  • Last modified by: This defines the last modification in the parameter values is done by whom.

  • Last modified on: This defines the last date and time the parameter values were modified on.


The following tables lists default policy settings and configurations in the systems. System administrators can modify these values as needed to change the behavior of specific modules and features within the application.

To modify default system settings, go to SystemSystem Default:


Parameter

Default value

Allowed value(s)

Purpose

1

Account Password Change Max Failed Attempts

3

0-999

Set a value of how many times password change attempts are made by vault for automated password changes. It is recommended to keep a value lower than your policy set at the asset level.

2

Account Password Checkout Timeout (Seconds)

30

1-999

Set a value (in seconds) to display the checked-out password on the screen when a user checks out a password.

3

Account Password Rotation Max No Of Threads

5

1-2999

Set a value to run X number of threads for password changes jobs.

4

Allow Edit User Logon Name

0

0-1

Configure the value as 1 in case you want to allow updation of the username by administrator

5

Allow Vault Access From Thin Client

1

0-1

Configure the value as 1 in case you want to allow the access of vault using thin client

6

Analytical Reports - Max Record To Show

5000

1-99999

Configure a value to set the maximum limit for analytical reports to be displayed on UI

7

Application - Host Header Injection Validation

NA

Domain name/hostname to be validated in every request header

Configure a value to set the condition for the server to respond back when one hits the URL of PAM

8

Application - Session Page Refresh Validation

0

0-1

Configure the value as 1 in case you want to validate page refresh event to avoid resubmitting last post back event

9

Application - Session Security Validation

0

0-1

Configure the value as 1 in case you want to allow users to work on multiple tabs at the same time 

10

Application - Session Source IP Validation

0

0-1

Configure the value as 1 in case you want to validate user session source IP Address with requesting IP Address

11

Asset Status Timeout (Milliseconds)

200

100-5000

Configure a value to set the timeout for connectivity of an asset

12

Auto Assign Instance to User on Creation

1

0-1

Configure the value as 1 to auto assign default instance when the user is created

13

AutoStart AppService - AccountDiscovery

0

0-1

Configure the value as 1 to auto start AccountDiscovery service

14

AutoStart AppService - AccountManagement

0

0-1

Configure the value as 1 to auto start AccountManagement service

15

AutoStart AppService - AccountsLifecycle 

0

0-1

Configure the value as 1 to auto start AccountsLifecycle service

16

AutoStart AppService - AssetADSync

0

0-1

Configure the value as 1 to auto start AssetADSync service

17

AutoStart AppService - AssetDiscovery

0

0-1

Configure the value as 1 to auto start AssetDiscovery service

18

AutoStart AppService - AssetStatus

1

0-1

Configure the value as 1 to auto start AssetStatus service

19

AutoStart AppService - EPMManagement

0

0-1

Configure the value as 1 to auto start EPMManagement service

20

AutoStart AppService - Notification

0

0-1

Configure the value as 1 to auto start Notification service

21

AutoStart AppService - PasswordManagement

0

0-1

Configure the value as 1 to auto start PasswordManagement service

22

AutoStart AppService - PasswordStatusMonitoring

0

0-1

Configure the value as 1 to auto start PasswordStatusMonitoring service

23

AutoStart AppService - SatelliteVault

0

0-1

Configure the value as 1 to auto start SatelliteVault service

24

AutoStart AppService - SessionManagement

1

0-1

Configure the value as 1 to auto start SessionManagement service

25

AutoStart AppService - SpectraWorkflow 

0

0-1

Configure the value as 1 to auto start SpectraWorkflow service

26

AutoStart AppService - SystemCleanup

0

0-1

Configure the value as 1 to auto start SystemCleanup service

27

AutoStart AppService - SystemBackup

0

0-1

Configure the value as 1 to auto start SystemBackup service

28

AutoStart AppService - SystemEvent

0

0-1

Configure the value as 1 to auto start SystemEvent service

29

AutoStart AppService - SystemHighAvailability

0

0-1

Configure the value as 1 to auto start SystemHighAvailability service

30

AutoStart AppService - SystemLogManagement

0

0-1

Configure the value as 1 to auto start SystemLogManagement service

31

AutoStart AppService - SystemManagement

0

0-1

Configure the value as 1 to auto start SystemManagement service

32

AutoStart AppService - SystemReporting

0

0-1

Configure the value as 1 to auto start SystemReporting service

33

AutoStart AppService - UserManagement

0

0-1

Configure the value as 1 to auto start UserManagement service

34

AutoStart AppService - UserStatus

1

0-1

Configure the value as 1 to auto start UserStatus service

35

AutoStart AppService - WebAppHighAvailability

0

0-1

Configure the value as 1 to auto start WebAppHighAvailability service

36

Browser RDP Version

2

1-2

Configure a value to set the version for RDP over Browser

37Enable Secure Link For Account Credentials00-1Configure the value as 1 to send a secure link for password checkout when password access is requested
38

From Header Default Date Range

7

1-30

Configure a value to set date range to be appeared in the header

39

Jump Server Startup Program

C:\\Sectona.Client.Vault\\Sectona.Client.Vault.exe

Any path from the system (Sectona Client Vault should be present at the specified path)

Configure a path of startup program for Jump Server

40

Network Discovery Timeout (Minutes)

30

1-999

Configure a value to set timeout limit for network discovery job

41

Re-authenticate User On Session Reconnect

0

0-1

Configure the value as 1 to authenticate user every time the session gets reconnected

42

Risk View Default No of From Days

25

1-30

Configure a value to set the maximum limit for days from which risk viewgraph can be drawn

43

Route Account Operation Via SessionProxy

0

0-1

Configure the value as 1 to operate account operations such as password change through session proxy

44

Sectona URI Launcher Client Root Directory

temp

temp or AppData

Configure a directory to store client session information

45

Sectona URI Launcher Client Sub Directory

Sectona

Any Directory name

Configure a sub directory for storing client session information

46

Sectona URI Launcher System Client Version

1100

1100-9999

Configure the appropriate value to specify current System Client Version

47

Session Management Keep Alive Time (Minutes)

3

1-9

Configure a value to set limit for session to be terminated after inactivity

48

Session View Default No of From Days

7

1-30

Configure a value to set maximum limit for session view to be displayed

49

Show Asset Filters On MyAccess UI

0

0-1

Configure the value as 1 to make asset filters visible on MyAccess page

50

Show MFA AccessKeys On UI

0

0-1

Configure the value as 1 to make MFA secret and shared keys visible on UI

51

Support License Expiry Alert Before (Days)

5

0-99

Configure a value to set the limit for support license expiry alert

52

Syslogs Retention Period In Days

90

30-9999

Configure a value for the syslog to be retained in the system

53

System License Expiry Alert Before (Days)

5

1-99

Configure a value to set limit for system license expiry alert

54

TriggerInterval AppService - AccountDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountDiscovery service

55

TriggerInterval AppService - AccountManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for AccountManagement service

56

TriggerInterval AppService - AccountsLifecycle (Minutes)

60

1-9999

Configure a value to set trigger interval time for AccountsLifecycle service

57

TriggerInterval AppService - AssetADSync (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetADSync service

58

TriggerInterval AppService - AssetDiscovery (Minutes)

60

1-9999

Configure a value to set trigger interval time for AssetDiscovery service

59

TriggerInterval AppService - AssetStatus (Minutes)

5

1-9999

Configure a value to set trigger interval time for AssetStatus service

60

TriggerInterval AppService - EPMManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for EPMManagement service

61

TriggerInterval AppService - Notification (Minutes)

2

1-9999

Configure a value to set trigger interval time for Notification service

62

TriggerInterval AppService - PasswordManagement (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordManagement service

63

TriggerInterval AppService - PasswordStatusMonitoring (Minutes)

60

1-9999

Configure a value to set trigger interval time for PasswordStatusMonitoring service

64

TriggerInterval AppService - SatelliteVault (Minutes)

60

1-9999

Configure a value to set trigger interval time for SatelliteVault service

65

TriggerInterval AppService - SessionManagement (Minutes)

1

1-9999

Configure a value to set trigger interval time for SessionManagement service

66

TriggerInterval AppService - SpectraWorkflow (Minutes)

1

1-9999

Configure a value to set trigger interval time for SpectraWorkflow service

67

TriggerInterval AppService - SystemCleanup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemCleanup service

68

TriggerInterval AppService - SystemBackup (Minutes)

60

1-9999

Configure a value to set trigger interval time for SystemBackup service

69

TriggerInterval AppService - SystemEvent (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemEvent service

70

TriggerInterval AppService - SystemHighAvailability (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemHighAvailability service

71

TriggerInterval AppService - SystemLogManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemLogManagement service

72

TriggerInterval AppService - SystemManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemManagement service

73

TriggerInterval AppService - SystemReporting (Minutes)

5

1-9999

Configure a value to set trigger interval time for SystemReporting service

74

TriggerInterval AppService - UserManagement (Minutes)

5

1-9999

Configure a value to set trigger interval time for UserManagement service

75

TriggerInterval AppService - UserStatus (Minutes)

300

1-9999

Configure a value to set trigger interval time for UserStatus service

76

TriggerInterval AppService - WebAppHighAvailability (Minutes)

1

1-9999

Configure a value to set trigger interval time for WebAppHighAvailability service

77Use Secondary IP Of Asset00-1Configure the value as 1 to make Secondary IP field visible on Add Asset page
78

User Logon Show SAML Option

0

0-1

Configure the value as 1 to make SAML option visible on User Login page

79

User Session Lockout (Minutes)

20

0-9999

Configure a value to set limit to lock user session

80User Session Risk Scoring Calculation10-1Configure the value as 0 to hide Risk View and Risk Score from user sessions
81

Vault Client Communication Protocol Version

1

1-2

Configure a value to set communication protocol version for Sectona Launcher and web application

82

Vault Client Connection Timeout (In Seconds)

100

1-100

Configure a value to set the timeout for Vault Client Connection

83

Video Log Default Timer Interval (Milliseconds)

1000

1-9999

Configure a value to set time interval between two consecutive frames of video logs

84

Web Application Load Balancing (Between P1-P2)

0

0-1

Configure the value as 1 to activate load balancing

85

Web Session Timeout (Minutes)

20

1-999

Configure a value to set the timeout for Web Session

  • Last modified by: This defines the last modification in the parameter values is done by whom.

  • Last modified on: This defines the last date and time the parameter values were modified on.