Skip to main content

Login Assistant: Setting up on a domain (no workstation software)

You can set up a domain-level SKA if you do not want to install software on users’ workstations.

A domain-level secure kiosk account is a network login account defined in an Active Directory domain. It typically has a help login ID. A security policy is applied to the help account that restricts access to the operating system and network resources when using the SKA.

  1. Create the help user .

  2. Configure the runurl program .

  3. Create a policy to lock down Windows workstations.

  4. Remove the help account from the Bravura Security Fabric account list, to prevent users from changing the help account password or attaching the ID.

  5. Advertise the help account to Bravura Security Fabric users.

These steps are explained in detail in the following sections.

Unless otherwise stated, all steps are performed on an Active Directory DC (domain controller), and must be performed using administrator credentials. Details vary depending on your version of Windows.

In this section: