Skip to main content

Limit logins to only legitimate administrators

One way to limit the number of users who can access the Bravura Security Fabric server is to remove it from any Windows domain. If the Bravura Security Fabric server is not a member of a domain, it reduces the risk of a security intrusion in the domain being leveraged to gain unauthorized access to the Bravura Security Fabric server.

  • Remove unused accounts, leaving just psadmin – the Bravura Security Fabric service account.

  • Create one administrator account to be used by the Bravura Security Fabric OS administrator to manage the server and set a strong password on this account.

  • Disable the default administrator account.

  • Remove any Guest or unused service accounts.

  • Remove the terminal services user account TsInternetUser. The Terminal Service Internet Connector License uses this account.

For any accounts that must remain, limit their access. At a minimum, block access by members of ’Everyone’ to files and folders on the server.

In this section: