ποΈ Denylist and Allowlist
The Applications, Automations, Uninstaller, Control panel and DLLs sub-module records can be separated by denylist and allowlist lists. They also allow segregation using global levels, workstations, credentials, and access groups.
ποΈ Offline Mode
senhasegura.go provides a way to offer the credentials offline for cases where the user has a notebook that transits in areas where the network does not provide access to the senhasegura server or in scenarios where the senhasegura is offline.
ποΈ UAC integration
senhasegura.go can integrate with UAC authentication in cases where an application needs to raise the privilege on demand. Besides Windows's authentication options, the senhasegura.go the application will display the logo in these cases.
ποΈ Token MFA OTP
If the Enable multi-factor authentication at login setting is active on the parameter screen, and the linked user has a MFA token configured in senhasegura, this user logs in to the workstation or accesses the workstation via RDP connection, the application will request the 2FA token.
ποΈ Network access block
When you activate the Block access to network parameter, senhasegura.go will stop any process initiated by users trying to access a TCP or UDP connection that is not for senhasegura.
ποΈ Privilege elevation block
When the Block elevation of privilege parameter is enabled, any attempt of privilege elevation that is not performed by senhasegura.go , will be blocked.
ποΈ DLL blocking
Blocking dll's is done when an executable tries to load the process.
ποΈ Automatic update
After senhasegura.go is installed and activated in the workstations, it is possible to update the version from the senhasegura server.
ποΈ Authentication automation
The authentication automation functionality allows the senhasegura.go to authenticate installed applications or web pages that are accessed directly on the user's workstation. This automation uses the credential selected in senhasegura.go to fill in data such as username and password.
ποΈ Directory and file control
The Directory and file control functionality allows the administrator to register settings that will control the permission of Windows files and directories.
ποΈ Control of executed commands
The control of commands executed through senhasegura.go allows to indicate the commands that can be executed in CMD and Powershell, that is, commands not indicated in the configuration will be blocked.
ποΈ JIT access
senhasegura.go allows the user to be added to the local administrators group via the Just-in-time access button, located on the senhasegura.go top bar.
ποΈ Malware Analysis
If enabled in the system settings, senhasegura.go will evaluate binaries that the user requests elevation of privilege. To perform the analysis, the binary will be sent to the online service VirusTotal, where it will be evaluated. The result of this analysis will be stored in senhasegura and will determine if the binary can be executed.