About add-on software

When you implement transparent synchronization, you install special software on the trigger system to monitor password changes and test the strength of new password choices. This software communicates with the Password Manager service on the Bravura Pass server, using an encrypted TCP socket connection.

Software for the following triggers is shipped with Bravura Security Fabric :

See the Transparent Password Synchronization for more information about this feature and installing software for the above trigger systems.

The OS/390 mainframe trigger software is shipped with Mainframe Connector. See the Mainframe Connector documentation for more information.

A domain-level secure kiosk account is a specially constructed and locked-down network operating system login account. It is typically used to allow users who forgot or otherwise disabled their network login password to gain access to a self-service password reset facility.

The <Program Files path>\Bravura Security\Bravura Security Fabric\<instance>\ addon\Domain SKA\ directory contains tools that are installed on a public share and used with the secure kiosk account (SKA).

See Login Assistant for more information about this feature.

This is a local alternative to deploying a domain-level secure kiosk account (SKA) with Bravura Security Fabric . It triggers the local equivalent of a Windows GPO (group policy object) on Windows. It launches a locally installed shell executable program (runurl), allowing users to change their passwords.

You install this software on Windows using the ska.msi or ska-x64.msi .

See Login Assistant for more general information about SKA software, and for manual installation instructions.

The local reset extension can silently update the user’s Windows password cache after a web-based password change via Bravura Security Fabric .

The following local reset extension installers are available:

See Local Reset Extension for more general information about this feature.

The Notification Client (psntfclient) is required only if users will receive notification via their web browser. The client is installed on a network share and is responsible for contacting the Notification Service (psntfsvc) to determine if users have any pending notifications. If they do, the psntfclient program opens a browser on the user’s workstation for the user to first log in and then to display the notification message in Bravura Security Fabric . If any of those notifications are force-level, the psntfclient opens the browser in kiosk mode, preventing the user from accessing navigation or other functionality until the user becomes compliant.

You install this software using the ntfclient.msi or ntfclient-x64.msi installer.

See Batch and web notification for more general information about this feature.

These tools are used to support Lotus Notes password management. You install this software using the psns.msi installer.

See Lotus Domino Server in the Connector Pack documentation for more information about targeting Lotus Notes.

Bravura Security Fabric uses the Bravura Privilege Local Workstation Service (hipamlws) software to perform local password resets and other operations for local service mode.

See Managed systems for more information about installing and using this feature.

Bravura Security Fabric uses access disclosure plugins to permit secure access to a password for a privileged account. Unlike scripted or executable plugins, these are JavaScript or web-based controls.

See Access disclosure plugins to learn how to configure these controls.