It is important to note that some programs in Windows are extremely critical in terms of the magnitude of their effect. Misuse of such programs may tamper development, maintenance, production or else create a security threat for confidential information. Sectona PAM platform provides a solution with its Server Access Policy wherein you can restrict or allow the access to certain programs for specific User Groups. You can choose these programs from the existing library or you can refer add Programs to Program Repository  to add your desired program.


  1. Login to PAM administrator
  2. Navigate to Policies on the top navigation bar. 
  3. Select Server Access Policy from the sidebar. 
  4. Select the Windows tab. 
  5. Click on +Add Server Access Policy → Fill in the details
  6. Under Policy Type: (a) choose Allow, if you want to allow the user group access only for particular Programs .  
                                  (b) choose Deny, if you want the user group to be abstained from the accessing certain Programs.
  7. Click on Next.
  8. Select the User Group(s) to whom the policy should apply → If you want to exclude some users from the selected User groups, you can mention them in Exception User(s) field.
  9. Click on Next.
  10. Under Parameters, choose the Programs you want to allow/deny access to. 
  11. Click on Next. Verify the policy details and click on Finish.

Refer here if you want to  set an expiry date for a Server Access Policy.