Website disclosure configurations
Users need to access potentially hundreds and thousands of websites from any browser without having to provide administrator credentials. When accessing these websites, session monitoring, via secure browser disclosure, can enhance the organization’s ability to audit access.
The following sections show you how to configure website disclosure configurations. Once the website disclosure configurations are created, managed accounts and vault accounts can be configured to use one or both of the following access disclosure methods:
Web app privileged sign-on This disclosure plugin launches a new web page tab within the same browser and provides automatic login to the website without need to enter administrator credentials for the managed account. This is currently supported on Chrome and Firefox browsers only. This disclosure method does not support session monitoring.
Secure browser The secure browser method allows users to automatically login to a website as a managed account without the need to enter administrator credentials, and includes recording screenshots using session monitor.
Only the Screenshots collection module is available in session monitor for secure browser.
Terminology
Web application administrator | User who has access to web application PDRs (pre-defined requests). This person needs to be a member of the PAM_TEAM_ADMINS user class, and needs to be configured by a product administrator. |
Secure browser disclosure plugin | A disclosure plugin, which provides a method that brokers access to websites using a dedicated browser window with added session monitoring. |
Web app privileged sign-on disclosure plugin | A disclosure plugin, which provides a method that brokers access to websites launched through a Chrome browser tab. |
Bravura Security browser extension | An extension that allows the web app privileged sign-on disclosure to broker access to the configured website. |
Secure browser client | Bravura Security Secure Browser trusted app that brokers access to a configured website with added session recording. |
Website disclosure configuration | Disclosure configuration created in Bravura Security Fabric using JSON configuration files to provide single sign-on access to a website. |
Requirements
Web app privileged sign-on disclosure method:
Google Chrome or Microsoft Edge (Chromium): Bravura Security browser extension 1.1.4 or newer needs to be installed. This extension can be obtained from the Chrome Web Store. Alternatively, this will be prompted upon initial launch of the web app disclosure.
Mozilla Firefox browser: Bravura Security browser add-on needs to be installed. This will be prompted upon initial launch of the web app disclosure.
Secure browser disclosure method: