Create a Server Access Policy for Windows servers

It is important to note that some programs in Windows are extremely critical in terms of the magnitude of their effect. Misuse of such programs may tamper development, maintenance, production or else create a security threat for confidential information. Sectona PAM platform provides a solution with its Server Access Policy wherein you can restrict or allow the access to certain programs for specific User Groups. You can choose these programs from the existing library or you can refer add Programs to Program Repository  to add your desired program.

Procedure:

1. Login to the system and select PAM from the product navigator.
2. Navigate to Policies on the top navigation bar. 
3. Under General, Select Server Access Policy from the sidebar. 
4. Select the Windows tab. 
5. Click on +Add Server Access Policy → Fill in the details
   
6. Under Policy Type: (a) choose Allow, if you want to allow the user group access only for particular Programs .  
                                 (b) choose Deny, if you want the user group to be abstained from the accessing certain Programs.
7. Click on Next.
8. Select the User Group(s) to whom the policy should apply → If you want to exclude some users from the selected User groups, you can mention them in Exception User(s) field.
9. Click on Next.
10. Under Parameters, choose the Programs you want to allow/deny access to. 
11. Click on Next. Verify the policy details and click on Finish.

Refer here if you want to  set an expiry date for a Server Access Policy.

Related articles