Manage the system
Product administrators can use the Manage the system (PSA) module to configure Bravura Security Fabric objects and environment, and administer security. The top navigation options depend on their administrative privileges.
The main menu includes license and usage statistics. The server that you are logged into is displayed at the bottom center of the page.
Manage the system main menu for Bravura Identity+Pass
Manage the system main menu for Bravura Privilege
The following subsections describe the Manage the system (PSA) module menu and corresponding sub-menu options.
Resources
Options on the menu enable you to add and update resources that can be managed by Bravura Security Fabric . You must have the "Manage resources" right to access this menu.
Click this link... | To access this functionality... |
|---|---|
Target systems | Add, update, or delete target systems. Details Target Systems |
Target system groups | Apply web password change restrictions, synchronization rules, and password policies to groups of target systems. Details Target System Groups |
Discovered objects | View discovered systems and accounts, and add them to managed system policies . Details Discovered Objects |
Import rules | Add, delete and modify target system import rules. Details Import rules |
Template accounts | Set up templates that can be used to create accounts. Details Template Accounts |
Account attributes | Configure attributes specific to target systems. Details Account Attributes |
Roles | Set up roles that can be used assign requirements for a set of users. Details Roles |
Groups | Enable Bravura Security Fabric to manage group membership for certain target systems. Details Groups |
Network resources | Enable users to request access to network resources such as Active Directory network shares and printers. Details Network Resources |
Operation dependencies | Set up dependencies that control how data is exchanged between connectors; for example, the creation of an Exchange mailbox can be made dependent on an Active Directory account. Details Operation Dependencies |
Resource attributes | Define common and reusable attributes for resources. Details Resource Attributes |
Resource attribute groups | Define collections of resource attributes. Details Resource Attribute Groups |
Options | Options for role-based access control enforcement. |
Policies
You must have the "Manage policies" right to access the full menu.
Click this link... | To access this functionality... |
|---|---|
User classes | Set up user classes that can be used to segment the user population. Details User classes |
Segregation of duties rules | Set up rules that provide a way of identifying exceptions to roles or possible access conflicts. Details Segregation of duties rules |
Authentication priority | Prioritize target systems used to authenticate users when accessing Bravura Security Fabric . |
Identification priority | Prioritize target systems that users can select to identify themselves when accessing Bravura Security Fabric . Details Identifying users |
Password policies | Modify and apply strength rules to Bravura Security Fabric ’s global, centrally-managed password policy. Details Password policy |
Question sets | Configure question sets that are used to authenticate users. Details Question Sets |
Login options | Configure options for login. Details Login options |
User notifications | Configure notification of users of compliance requirements, password expiry, and other events. You must have the "Manage notifications" administrative privilege to access the User notifications sub-menu item. Details Batch and web notification |
Authentication chains | Customize authentication to Bravura Security Fabric using multiple methods. Details Authentication chains |
System interfaces | Configure interfaces with external systems. Details Keeping passwords secret from product administrators |
REST API authorization policies | Search, download, or reset REST API authorization policies to default. Details REST API Authorization policies. . |
Options | Configure general login and authentication policy options. Details Authentication policy options |
Privileged access
Note
Some of the options in this menu are only available with a full Bravura Privilege license 
.
Click this link... | To access this functionality... |
|---|---|
Managed systems | Add, delete and configure managed systems. Details Managed Systems |
Managed systems policies | Add, delete and modify managed systems policies. Details Managed system policies |
Import rules | Add, delete and modify import rules. Details Import rules |
Access disclosure plugins | Add, delete and modify access disclosure plugins. Details Access disclosure plugins |
Manual password randomization batches | View the manual password randomization results. Details Reviewing randomization results |
Local workstation service installation package | Generate installation key and download local workstation service installation package. |
Node assignments | Change the service linked to a managed system policy. |
Options | Configure general privileged access options. |
Workflow
Some of the options in this menu are only available with a full Bravura Privilege or Bravura Identity license 
.
The options on the Workflow menu enable you to configure common workflow objects and workflow logic. The table below details the available menu options. You must have the "Configure workflow setup" right to access this menu.
Click this link... | To access this functionality... |
|---|---|
Pre-defined requests | Configure pre-defined requests to define requests in terms that users understand, and reduce the number and complexity of steps. Details Pre-defined Requests |
Profile and request attributes | Set up profile and request attributes that can be used to collect and display information about users. Details Profile and request attributes |
Attribute groups | Group attributes to control user access and display, and apply attributes to certain operations. Details Attribute groups |
Authorizers | Set up users as authorizers. Details Static authorizers |
Email configuration | Set up e-mail notification. Details Modifying global mail settings |
Email customization | Customize language macros for email messages. Details Customizing workflow email using the Manage the system (PSA) module |
Options | Configure the various workflow options and features. This includes options for:
|
Inventory
This menu is available with a Bravura Identity license .
The options on the Inventory menu enable you to configure items and processes for inventory management. The table below details the available menu options. You must have the "Configure workflow" setup right to access this menu.
Click this link... | To access this functionality... |
|---|---|
Target systems | Add, update or delete target systems used for inventory management. Details Inventory Target Systems |
Locations | Set up location properties to help you define, search for, and manage inventory items. Details Inventory Locations and Types |
Item types | Set up item type properties to help you define, search for, and manage inventory items. |
Inventory managers | Set up users as inventory managers. You must have at least one item type, and one location set up before you can do this. Details Inventory managers |
Template accounts | Set up templates that can be used to request inventory items. Details Template accounts |
Inventory states | Update inventory states. Details Inventory Objects and States |
Inventory items | Add individual inventory items. |
Options | Enable plugins to manage inventory. Details Inventory Management Options |
Modules
The options on the menu enable you to configure the Bravura Security Fabric graphical user interface. The table below details the available menu options. You must have the "Configure modules" right to access this menu.
Click this link... | To access this functionality... |
|---|---|
Manage certification process (CERT) | Manage the access certification process and initiate certification campaigns. Details Manage certification process |
View dashboards (DASH) | View graphical summary reports. Details View dashboards |
Manage external data store (DBE) | Configure events and options for the External data store. Details External Data Store (DBE) |
Digital ID (DID) | Enable event actions for this module, which is used by Bravura Security Fabric to update a Lotus Notes ID file repository. Details Digital ID |
Help users (IDA) | Configure event actions and options for help desk users to assist users. Details Help users |
Manage the OrgChart (IDG) | Configure event actions and options for administrators to manage the organization chart. Details Manage the OrgChart |
Browse the OrgChart (IDO) | Configure event actions, plugins, and options for end users to browse or update the organization chart. |
View and update profile (IDR) | Configure plugins and options for end users to request security changes. Details View and update profile (IDR) |
Manage delegations (IDS) | Configure options for users to manage delegation requests. Details Manage delegations |
Manage the system (PSA) | Set event actions and options for product administrators to configure and manage Bravura Security Fabric . Details Manage the system (PSA) |
Front-end (PSF) | Configure plugins and options for front-end access and authentication. Details Front-End |
Generate voice print enrollment PIN (PSI) | Set event actions and options for voice print registration. |
Unlock accounts (PSK) | Set event actions and options for self-service account unlocks. Details Unlock accounts (PSK) |
Attach other accounts (PSL) | Set event actions and options for alternate login ID management. Details Manage tokens |
User notifications (PSN) | Enable the user notification system. Details User notifications (PSN) |
Manage tokens (PSP) | Set event actions and options for self-service token management. Details Manage tokens |
Update security questions (PSQ) | Set event actions and options for security question profile management. Details Update security questions (PSQ) |
Password synchronization registration (PSR) | Set event actions and options for password synchronization registration. |
Change passwords (PSS) | Set event actions and options for self-service password changes. Details Change passwords (PSS) |
Manage reports (RPT) | Configure options for the Manage reports (RPT) module. Details Manage reports (RPT) |
Requests | Configure event actions and options for users to view and act on requests. Details Requests app |
Privileged access | Configure Bravura Privilege managed systems and policies, service IDs, event actions, plugins, and options. Details Privileged access app |
Session monitor | Configure Bravura Privilege recorded sessions. Details Session monitor app |
Options | Configure plugins and options that apply to web modules in general. |
See also
For details about module configuration options see Modifying general behavior.
Security
The options on the Security menu enable you to set up and maintain the security of your Bravura Security Fabric environment. The table below details the available menu options. You must have at least one of the following rights to access this menu:
Manage security
Manage product administrators
Manage user groups
Manage certification
Click this link...
To access this functionality...
Access to profile and request attributes
Define user groups to control permissions for attribute groups.
You must have the "Manage user groups" right to access this option.
Access to resource attributes
Define user groups to control permissions for resource attributes.
Access to product features
Add, update, delete, or enable / disable other users who log into the administrative consoles. You must have the "Manage product administrators" right to access this option.
Details Product administrators
Access to user profiles
Add, update, delete, or enable / disable groups of users who log into the self-service modules, or the Help users (IDA) module. You can also specify a requester and view a list of their privileges. You must have the "Manage security" right to access this option.
Details Access to user profiles
Privileged access to systems
Define user groups to control permissions for managed system policies .
You must have the "Manage user groups " right to access this option.
Options
Configure general security options. You must have the "Manage security" right to access this option.
Details Security plugin options
Maintenance
The options on the Maintenance menu enable you to set up and maintain your Bravura Security Fabric service programs, schedule jobs, update the system, configure mail, and configure general settings. The table below details the available menu options. You must have at least one of the following rights to access this menu:
Maintain servers
Configure replication
Click this link... | To access this functionality... |
|---|---|
Auto discovery | Manage ID filters, set connector order, or run auto discovery. You must have the "Maintain servers" right to access this option. Details Auto Discovery |
System logs | View and search the current Bravura Security Fabric log. You must have the "Maintain servers" right to access this option. |
Services | Install and monitor the Bravura Security Fabric services through the Web interface. You must have the "Maintain servers" right to access this option. |
Scheduled jobs | Schedule jobs. You must have the "Maintain servers" right to access this option. Details Scheduling Maintenance |
Connector concurrency rules | Configure extra locking for connector operations, preventing concurrent execution. You must have the "Maintain servers" right to access this option. Details Customizing connector behavior |
File synchronization | Synchronize files between the main server and proxy servers, or between servers in a replicated environment. You must have the "Maintain servers" right to access this option. Details Managing Proxy Servers and File Synchronization . |
Connector behavior | Change default options for various connectors. You must have the "Maintain servers" right to access this option. See Customizing connector behavior for details about options for each connector. |
Database replication | Configure and control database replication. You must have the "Configure replication" right to access this option. |
System variables | Configure all system variables within Bravura Security Fabric from one page. This is helpful if you know the name of the system variable you want to modify, but cannot remember where it is located. |
Environment variables | Display the current system environment in which Bravura Security Fabric is running. This is not the same environment as the currently logged-in user. You must have the "Maintain servers" right to access this option. |
Options | Configure general maintenance options. You must have the "Maintain servers" right to access this option. |