Example: Audit recorded sessions
Additional requirements
This example assumes that a vault account has been checked out with the secure browser disclosure method, creating a recorded session.
Only screenshots are recorded.
Configure session monitoring privileges
Log in to the front-end as superuser.
Click Manage the system > Security > Access to user profiles > Self-service rules.
Select ALL_SELF_REQUEST.
Add the Manage recorded sessions privilege.
This will give all users the manage recorded sessions privilege. If you require specific users from a user class to have access to the Session Monitor app, create a new self-service rule.
Click Update.
Click Manage the system > Privileged access > Managed system policies.
Select the managed system policy:
ONBOARDED_ACCOUNTS for onboarded accounts
VAULT_MSP for team vault accounts
SYSTEM_VAULT_MSP for system vault accounts
Click the Authorizers tab.
Specify authorizers in Search recorded sessions and Download recorded sessions and/or View recorded sessions.
Click Update.
Audit recorded sessions
Log in to Bravura Security Fabric as an end user with session monitoring privileges.
Click Session monitor under PRIVILEGED ACCESS TO MANAGED SYSTEMS.
The Session monitor app opens.
Search for and select the session to view.
Click Request view to request view access to the session.
Sessions can be in-process, in which case a short delay exists.
Click Request download to submit a request to download the package.
Searching, viewing, and downloading sessions are separate privileges that can be granted.
Revoke access while viewing an in-progress session
Log in to Bravura Security Fabric asa help desk user with session monitoring and check-in access privileges.s.
The Session monitor app opens.
Search for and select the vault account session.
Click View .
Click Check in access .
Confirm the check-in.