Configuration detail
To configure batch notifications:
Click Manage the system > Policies > User notifications > Batch notifications .
Click Add new….
Type the notification ID and Description. The notification ID can only contain ASCII characters.
Set the notification Severity :
Info
The notification is informational. The user may be requested to take action, but if he does not respond, no further action is taken.
Warning
The notification is a warning. An action is requested but not forced at the current time. If the user does not comply after a certain number of warnings, Bravura Security Fabric can take another action.
Determine the compliance event to trigger a notification by choosing the Plugin to run to determine compliance:
Password expiry
Users’ passwords are about to expire.
Security questions registration
Users have not registered their security question profiles.
Query USERSTAT tag
A user information query evaluates a particular value; for example, the value exists, is true, or is less than some other value. Users who do not match the condition are notified. There are several built-in USERSTAT tags.
Accounts attachment
Users do not own enough accounts, as defined by the PSL MIN ACCOUNTS system variable.
or
Users do not have an account on a target system which has the Users must have accounts option enabled.
Mobile enrollment
Users have not enrolled a mobile device.
Determine the Maximum number of messages to send per run to limit how many messages are sent out per batch run. When used together with Time interval after sending a message during which no further messages should be sent to the same user, the users that are notified in the first batch can be bypassed in the next batch. As a result, a batch notification can be sent to all users in batches, rather than all at once.
Select the radio button for:
Maximum number of messages to send per user and type the number of messages to send
Unlimited reminders to keep sending reminders until the user is compliant
No reminders to disable the notification
Set the Time interval after sending a message during which no further messages should be sent to the same user.
Enter a number and choose an interval. For example, if this is set to 10 minutes and the plugin is run twice within 8 minutes, then any users who receive the first notification will not receive it a second time.
If you defined a Maximum number of messages to send per user for a warning-level notification, determine the action to take for non-compliant users by choosing the Plugin to run when reminder limit is exceeded:
Set USERSTAT tag
Set a USERSTAT tag for a non-compliant user, and optionally deletes the tag when compliance is reached.
Global email plugin
Sends an email to the user via the plugin specified by the GLOBAL MAIL PLUGIN system variable.
Disable profile
Disable the Bravura Security Fabric profile of the particular user, and optionally re-enables the user when compliance is reached.
If you want to stop reminders from being sent on certain dates, type them in the No reminders on these dates field.
Type the dates one line at at time, in the format MM-DD or YYYY-MM-DD.
Click Add.
Next
You can now:
Configure settings for the compliance, reminder, and action plugins by clicking the configure icon
next to the plugin name. Settings for built-in programs are explained in the following sectionsTest batch notifications using the
ntftriggerprogram.Set pre-conditions for evaluating a notification for a user.
Tag | Description | Example |
|---|---|---|
LASTPSL | The last time the user used the Attach other accounts module. The time used is the authentication time of the session. | 2021-10-28 14:40:16 (UTC-06:00) |
LASTSKIN | The last skin the user used. | default |
LASTLANG | The last language the user used. | en-us |
LASTPWCHGMODULE | The last module used to reset the user's password. | pss,ida,idpm |
PSLDONE | The user has satisfied mandatory account requirements. This is defined by the per target system setting Users must have accounts, and the global system variable PSL_MIN_ACCOUNTS. The allowed value true is set by | true |
PSQDONE | The user has satisfied the security question requirement. The allowed value true is set by | true |