The Visual Guard Win console is the interface through which you can manage the security information of your application.

The console is a development tool, where developers can create and manage all the security data: repositories, permissions, permission sets, user accounts, roles, etc.

It is an Identity management tool, where user administrators can manage user accounts, user groups, password, password policy, grant roles, etc

It is an Audit tool which allows auditors to generate reports and review the log of your applications.

Please Note:

• The identity management features can also be performed in the Web Console. Please refer to the VG Web Console documentation for more information.

• A large range of the features of the winconsole can be accessed through the VG API in case you want to develop you own security management interface. For more information about the API, please refer to the Developer’s guide.

• Visual Guard allows users to create new user accounts or reuse existing Windows accounts stored in Active Directory.

• Follow the steps below to open the Visual Guard application.

• Access the Visual Guard console using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console

OR

• Double click on the “Visual guard Console” icon provided on the desktop.

• The Visual Guard console will open.

• Repository Management Panel (A): This will display the options to manage the repository. This option may change depending upon the selection made in the Left Navigation Panel.

• Menu Bar (B): This will display various menu options that will help to manage the whole system. This option may change depending on the selection made in the Left.

• Left Panel (C): This will display the list of repositories and applications integrated with the system. All other options might vary depending on the option selected under this panel.

• Right Panel (D): This will display the list of repositories and applications integrated with the system. This option may vary depending on the selection made in the Left Navigation Panel.

See Also: 

• Managing Repositories

• Managing User Accounts

System requirements

• Operating System: Windows Server 2012, 2016, 2019,2022 or Windows 10, 11
• Hard Drive: 512 GB to 1 TB Fast drive recommended – ideally SSD
• CPU:  Minimum of 4 cores, operating at 3 GHz or higher.
• RAM: 8 GB 
• Software:
  • .Net Framework 4.7.2 Runtime
• VGRepository
  • Require SQL Server 2012 or later, with a minimum of the Standard Edition.
  • Require Oracle Database with Oracle9i or later. Please ensure the Oracle Driver is installed.

Installation

Visual Guard uses the industry standard InstallShield as the installation mechanism. The installation is almost entirely automated and should just take a few minutes to complete.

To install Visual Guard, follow the steps below:

Note: You can cancel the installation at any time

• Step 1:Double-click on the installation file icon. The screen below will be displayed.
  • Click “Next “ to continue with the installation.

• Step 2: License Agreement: On selecting I Agree option, “Next “ will be enabled as shown below
  • Click “Next “ to proceed with the installation.

• Step 3: Select the location to install Visual Guard by clicking “Browse”.
  • The selected location will be displayed in the Folder (A).
  • You can click “Disk cost” to see the availability and required space for installation.
  • Click “Next >” to proceed with the installation.

• Step 4: Click “Next >” to start the installation or click “< Back”  to make any changes.

• Step 5: On clicking “Next >” , the installation process will start as shown below.

• Step 6: Once the installation is complete, the screen below will be displayed.
  • Click “Close” to exit the installation.

Connecting to a repository in Visual Guard refers to establishing a link between the Visual Guard security system and the database (repository) that stores user identities, roles, permissions, and security configurations. This repository acts as a central storage where all security-related data is managed and retrieved during authentication and authorization processes

Once a repository has been created, it will be listed under VG WinConsole. Before you can perform actions on the repository, you need to connect to it.

Follow the steps below to access a repository on the console

Step 1: Access the VG WinConsole under the path Start > All Programs > Novalys > Visual Guard X.X > Visual Guard Console –> Visual Guard console will open.

Step 2: Select the repository you want to connect to.

Step 3: Use one of the methods below to connect to the selected repository.

• Right click on the Repository in the Left Navigation Panel and select Connect menu from the Popup Menu. (A)
  OR
• Select Connect menu from Action Menu. (B)
  OR
• Click on Click Here (C) link provided in the Right Panel of Visual Guard Console

Step 4: If mixed mode authentication has been enabled in this repository, you will have to choose which mode you will use to connect.

Select the appropriate authentication mode. Depending on the selection of the authentication type the fields will vary.

Please Note: The user has to choose authentication mode only if mixed mode authentication is enabled.

Step 5: Enter the necessary credentials according to the means of login used. Click “OK” to log in the system.

Note: The system will authenticate the credentials and provide you access according to the role assigned to you. If more than one role are assigned to you, the system will grant you the privileges relevant to all the roles.

See Also:

This page shows how to create a repository stored in files.

Please Note: Storing VG repository in files is not recommended if you have more than 200 user accounts.

Follow the steps below to create a file repository.

• Access the VG Win Console using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console
• The VG Win console will open.

• Access the Add Repository menu using one of the options below:
  
  • Select the Add repository menu from File Menu. (A)

OR

• • Right click on the ‘Visual Guard Console’ in the Left Navigation Panel and select Add repository menu from the Popup Menu. (B)

OR

• • Click “Add Repository” . (C)
• The Repository Creation Wizard screen will be displayed as shown below.

• The wizard will automatically walk you through the repository creation.
• Click “Next >” to access the Next screen.

• Select the highlighted option (A) from the screen to Create a new empty repository.
• Click “Next >” to select the repository type.

• Select option (A) from the screen to create a File Repository.
• Click “Next >” to select the location of the Repository

• Select the path where the repository is to be created by clicking “…”  (A).
• The selected path will be displayed in the highlighted section as shown below.
• This location will be used for saving the repository.

• In the above screen you can see an example of the path where Repository is the name of the directory which will contain the files for that particular repository.
• As you give the path, a message box will be displayed to confirm for the creation of the directory. 

• Click “yes” to create the directory or click “no” to cancel the creation.
• Click “Next >”  to select the Authentication Mode. 

• Visual Guard offers two types of authentication modes: Visual Guard Authentication Mode (A) as well as Windows Authentication Mode (B) for the File Repository.
• User can select both or either of the two available options.
• Please Note: Database user accounts can not be used in file repository.
• Click “Next >”  to specify the Repository Name and Default Master User Information details.

• Specify the Repository Name in the Repository Name Text Box (A).
• Specify the Default Master User Information (B)
  • Select the Authentication mode (C) for which the account details are to be specified.
  • The Authentication menu (C) will display all the Authentication Modes selected by you.
  • Specify a user name and password. This option will be available in case the Visual Guard Authentication Mode is selected.
  • In case of Windows Authentication Mode, the current username and password will be automatically used for authentication.

Please Note: Here you are creating your first user account too.

• Click “Next >”  to complete the Repository Creation Process.

Click “Finish” to successfully start using the repository.

The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard Console.

• To access the repository, click on the option (A).
• The following Login screen will open and allow you to authenticate and access the repository.

• Since you have only one user account initially for a single Authentication Mode, you will not be asked to select the Authentication Mode. Enter you credentials to connect to the repository.
• The following repository related details will be displayed in the main area.

See Also:

• Selecting Existing Repository
• Creating New SQL Repository
• Creating New Oracle Repository

This page shows how to create a repository stored in SQL Server.

• Access the VG Win Console application using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console
• The VG Win console will open as shown below

• Access the Add Repository option using one of the options below:
  • Select the Add repository menu from File Menu. (A)

OR

• • Right click on the ‘Visual Guard Console’ in the Left Navigation Panel and select Add repository menu from the Popup Menu. (B)

OR

• • Click “add repository” . (C)
• The Repository Creation Wizard screen will be displayed as shown below.

• The wizard will automatically walk you through the repository creation.
• Click “Next >”  to access the Next screen.

• Select the option (A) from the screen to Create a new empty repository.
• Click “Next >”  to select the repository type

• Select option (A) from the screen to create a SQL Server Repository.
• Click “Next >”  to specify the SQL Server name as well as the username and password required to access the repository; the screen below will be displayed.

• Your Database Administrator (DBA) can create database objects manually thanks to a script provided with Visual Guard.
• The scripts are in the file <Visual Guard installation directory>\Visual Guard Console\Database\SQLServer
• For more information click:
  • http://www.visual-guard.com/EN/dotnet-security-user-role-permission/support/dotnet-API-how-to-documentation
• Specify the server location in the option (A). You can specify either the IP Address or the Server Name. This server contains the objects of the database necessary to store the Visual Guard repository.
• Select the Authentication Mode (B).
• Two types of authentication modes are available SQL Server Mode and Windows Authentication Mode (B)

• You can select one of the either authentication modes. Specify the username and password that will be used to connect to the server.
• Select the database name or enter the name of the new database where this repository is to be created by using option (A).
• Click on the “Next >”  to select Authentication Mode.

• Visual Guard offers three types of authentication modes Visual Guard Authentication Mode (A), Windows Authentication Mode (B), as well as Database Authentication Mode (C) for SQL Server Repository.
• You can select all three or either of the available options.
• Click “Next >”  to specify the Repository Name and Default Master User Information details

• Specify the Repository Name in the Repository Name Text Box (A).
• Specify the Default Master User Information (B)
  • Select the Authentication mode (C) for which the account details are to be specified.
  • The Authentication option (C) will display all Authentication Modes selected by you.
  • Specify a user name and password. This option will be available in case of Visual Guard Authentication Mode is selected.
  • In case of Windows Authentication Mode, the current username and password will be automatically used for authentication.
  • In case Database Authentication Mode is selected then the username and password used to authenticate database should be specified.

• Click “Next >”  to complete the Repository Creation Process.
• Once you click on the Next Visual Guard will create the structure of the repository in the database.

• Click “Finish”  to successfully start using the repository.
• The user whose details are provided in the above screen will be able to create tables, stored procedures and role in the database.
• The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard Console.

• To access the repository, click on option (A).
• The following login screen will open and allow you to authenticate and access the repository.

• Select the Authentication Mode and specify the username and password.
• The following details will be displayed on Visual Guard Console.

See Also:

• Selecting Existing Repository
• Creating New File Repository
• Creating New Oracle Repository

This page shows how to create a repository stored in Oracle Database.

• Access the VG Win Console application using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console
• The VG Win Console will open.

• Access the Add Repository option using one of the options below:
  • Select the Add repository option from File Menu. (A)

OR

• • Right click on the ‘Visual Guard Console’ in the Left Navigation Panel and select Add repository option from the Popup Menu. (A).

OR

• • Click “add repository” . (C)
• The Repository Creation Wizard screen will be displayed as shown below.

• The wizards will automatically walk you through the repository creation.
• Click “Next >”  to access the Next screen.

• Select highlighted option (A) from the screen to Create a new empty repository.
• Click “Next >”  to select the repository type.

• Select option (A) from the screen to create an Oracle Repository.
• Click “Next >”  to specify the server name as well as the username and password required to access the repository; screen below will be displayed.

• Your Database Administrator (DBA) can create database objects manually thanks to a script provided with Visual Guard.
• The scripts are in the file <Visual Guard installation directory>\Visual Guard Console\Database\Oracle.
• Specify the Server Name in the option (A). This server contains the objects of the database necessary to store the Visual Guard repository.
• Select the Authentication Mode (B).
• Two types of database authentication modes are available namely Oracle Authentication and Windows Authentication Mode (B).

• You can select either of the available authentication modes. Specify the username and password that will be used to connect to the server.
• Specify the schema name.
• If the Schema Name field is empty, Visual Guard will create the structure in the schema of the User Name specified in the wizard.
• Click “Next >”  to select the Authentication Mode.

• Visual Guard offers three types of authentication modes Visual Guard Authentication Mode (A), Windows Authentication Mode (B), and Database Authentication Mode (C) for Oracle Repository.
• User can select all three or either of the available options.
• Click “Next >”  to specify Repository Name and Default Master User Information details.

• Specify the Repository Name in the Repository Name Text Box (A).
• Specify the Default Master User information (B)
  • Select the Authentication mode (C) for which the account details are to be specified.
  • The Authentication option (C) will display all the Authentication Modes selected by you.
  • Specify a user name and password. This option will be available in case Visual Guard Authentication Mode is selected.
  • In case of Windows Authentication Mode, the current username and password will be automatically used for authentication.
  • In case Database Authentication Mode is selected then the username and password used to authenticate the database should be specified. 

• Click “Finish”  to complete the Repository Creation Process.
• Once you click on the Finish Visual Guard will create the structure of the repository in the database.
• The users whose details are provided in the above screen will be able to create tables, stored procedures and role in the database.
• The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard console. 

• To access the repository, click on option (A).
• The following login screen will open and allow you to authenticate and access the repository.

• Select the Authentication Mode and specify the username and password.
• The following details will be displayed on the Visual Guard Console.

See Also:

• Selecting Existing Repository
• Creating New File Repository
• Creating New SQL Server Repository

In Visual Guard, repositories serve as secure data stores for managing user credentials, roles, permissions, and application security configurations. The “Add Existing Repository” feature allows you to connect an existing repository to your Visual Guard setup. This can be particularly useful when migrating between environments, restoring configurations, or integrating with pre-existing database systems.

You can link to repositories created in various database systems, including SQL Server, Oracle, and Identity Server, ensuring flexibility and compatibility with your existing infrastructure. By connecting to an existing repository, you can maintain continuity in your security setup while leveraging Visual Guard’s advanced features for identity and access management.

Please Note: Deleting a repository from the list means it will not appear anymore in the Winconsole. This is different from the option “remove repository” which allows you to totally erase a repository from your system.

This section shows how to add in the preview an SQL repository, previously created and deleted from the list.

Step 1: Access the VG Win Console application using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console

• Access the Add Repository option using one of the options below:
  • Select Add repository option from File Menu (A).

OR

• Right click on the ‘Visual Guard Console’ in the Left Navigation Panel and select Add repository option from the Popup Menu. (B)

OR

• Click “Add repository…”  (C)

Step 2: The Repository Creation Wizard screen will be displayed as shown below, the wizard will automatically walk you through the repository creation.

Click “Next >” to access the Next screen.

Step 3: Select the highlighted option (A) from the screen to create a repository using an existing repository.

Click “Next >”  to select repository type.

Step 4: Select option (A) from the screen to create a SQL Server Repository. Click “Next >”.

Step 5: Specify the server location in the option (A). You can specify either the IP Address or the Server Name This server contains the objects of the database necessary to store the Visual Guard repository.

Select the Authentication Mode (B), we have two types of authentication modes are available namely SQL Server Mode and Windows Authentication Mode (B)

Step 6: You can use either authentication types. Specify the username and password that will be used to connect to the server, select the database where this repository is to be created by using option (A). The database will be same where the existing repository is stored.

The Authentication Mode selected for the existing repository will automatically be used for the new repository. Click “Next” to complete the Repository Creation Process.

Step 7: Visual Guard will automatically use the Repository Name used last to create the repository, you can rename the repository on the Visual Guard Console once the creation process is complete.

The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard Console.To access the repository, click on option (A).

Step 8: The following screen will open and allow you to authenticate and access the repository. Select the Authentication Mode and specify the username and password.

Step 9: The following repository related details will be displayed in the main area.

See Also:

• Creating New SQL Repository
• Selecting Existing File Repository
• Selecting Existing VG Server Repository
• Selecting Existing Oracle Repository

Please Note: Deleting a repository from the list means it will not appear anymore in the Winconsole. This is different from the option “remove repository” which allows you to totally erase a repository from your system. 

This section shows how to add in the preview an Oracle repository, previously created and deleted from the list.

Step 1: Access the VG Win Console application using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console

• Access the Add Repository option using one of the options below:
  • Select Add repository option from File Menu (A).

OR

• Right click on the ‘Visual Guard Console‘ in the Left Navigation Panel and select Add repository option from the Popup Menu. (B)

OR

• Click “Add repository…” (C)

Step 2: The Repository Creation Wizard screen will be displayed as shown below, the wizard will automatically walk you through the repository creation.

Click “Next >”  to access the Next screen.

Step 3: Select the highlighted option (A) from the screen to create a repository using an existing repository.

Click “next >”  to select repository type.

Step 4: Select option (A) from the screen to create an Oracle Repository.

Step 5: We have 2 different connection types;

Option 1: Basic Connection Type

• Choose the connection type, Basic (A)

• Enter the Data Source / TNS Alias, you can click on ‘Sample Connection String‘ (B) and copy paste the code –> Select the Authentication Mode and enter username and password

• Enter the Schema name and test the connection by clicking on Test Connection (C) –> you will receive a confirmation as shown below –> Click on ‘Finish‘ to complete the repository creation

Option 2: Advanced Connection Type

• Choose the connection type, Advanced (A) –> Enter the host & port details

• Enter the Schema name and test the connection by clicking on Test Connection (B) –> you will receive a confirmation as shown below –> Click on ‘Finish‘ to complete the repository creation

Step 6: Visual Guard will automatically use the Repository Name used last to create the repository. You can rename the repository on the Visual Guard Console once the creation process is complete.

The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard Console. To access the repository, click Connect Repository.

Step 7: The following screen will open and allow you to authenticate and access the repository. Select the Authentication Mode and specify the username and password.

• The following details will be displayed on the Visual Guard Console.

See Also:

• Creating New Oracle Repository
• Selecting Existing SQL Repository
• Selecting Existing VG Server Repository
• Selecting Existing File Repository

Please Note: Deleting a repository from the list means it will not appear anymore in the Winconsole. This is different from the option “remove repository” which allows you to totally erase a repository from your system.

This section shows how to add in the preview an VG Identity Server repository, previously created and deleted from the list.

Step 1: Access the VG Win Console application using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console

• Access the Add Repository option using one of the options below:
  • Select Add repository option from File Menu (A).

OR

• Right click on the ‘Visual Guard Console’ in the Left Navigation Panel and select Add repository option from the Popup Menu. (B)

OR

• Click “Add repository…”  (C)

Step 2: The Repository Creation Wizard screen will be displayed as shown below, the wizard will automatically walk you through the repository creation.

Click “Next >” to access the Next screen.

Step 3: Select the highlighted option (A) from the screen to create a repository using an existing repository. Click “Next >”  to select repository type.

Step 4: Select option (A) from the screen to add existing repositor via VG Identity Server Repository, Click “Next >” to specify the VG Identity Server URL

Step 5: Specify the server location in the option (A). Select the VisualGuardIdentityServerUrl (B).

• via Http or Https
• Via GrpcChannel (Http2.0)
• Via GrpcChannel (Http 1.1 compatible)

Click “Finish” to complete the Repository Creation Process.

Step 6: Visual Guard will automatically use the Repository Name used last to create the repository.

• You can rename the repository on the Visual Guard Console once the creation process is complete.
• The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard Console.

To access the repository, click on Connect Repository

Step 7: Select the Authentication Mode and specify the username and password.

Step 8: The following repository related details will be displayed once you are logged in successfully.

See Also:

• Creating New SQL Repository
• Selecting Existing File Repository
• Selecting Existing VG Server Repository
• Selecting Existing Oracle Repository

Please Note: Deleting a repository from the list means it will not appear anymore in the Winconsole. This is different from the option “remove repository” which allows you to totally erase a repository from your system.

This section shows how to add a repository in the preview through VG Server, previously created and deleted from the list.

Please Note: For adding existing repository through Visual Guard Server, Visual Guard service must be configured in private mode only.

• Access the VG Win Console application using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console
• The VG Win console will open as shown below.

• Access the Add Repository option using one of the options below:
  • Select Add repository option from Action Menu. (A)

OR

• • Right click on the ‘Visual Guard Console’ in the Left Navigation Panel and select Add repository option from the Popup Menu. (B)

OR

• • .Click “Add repository…” .(C)

OR

• • Select Add repository option from File Menu
• The Repository Creation Wizard screen will be displayed as shown below:

• The wizard will automatically walk you through the repository creation.
• Click “Next >”  to access the Next screen.

• Select the highlighted option (A) from the screen to create a repository using an existing repository.
• Click “Next >”  to select repository type.

• Select option (A) from the screen to create a repository through Visual Guard Server.
• Click “Next >”  to provide the URL of the Repository under which the existing repository exists; the Repository Location Selection screen will be displayed. 

• Specify the server location in the option (A).

Please Note: You can provide the URL with both TCP or HTTP service.

Visual Guard Server URL with TCP Service:

Visual Guard Server URL with HTTP Service:

• Click “Finish” to complete the Repository Creation Process.
• Visual Guard will automatically use the Repository Name used last to create the repository.
• You can rename the repository on the Visual Guard Console once the creation process is complete.
• The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard Console.

• To access the repository, click on option (A).
• The following screen will open and allow you to authenticate and access the repository. 

• Select the Authentication Mode and specify the username and password.
• The following repository related details will be displayed in the main area.

See Also:

• Selecting Existing SQL Repository
• Selecting Existing File Repository
• Selecting Existing oracle Repository

Please Note: Deleting a repository from the list means it will not appear anymore in the Winconsole. This is different from the option “remove repository” which allows you to totally erase a repository from your system.

This section shows how to add in the preview a file repository, previously created and deleted from the list.

• Access the VG Win Console application using the path Start > All Programs > Novalys > Visual Guard > Visual Guard Console
• The VG Win Console will open.

• Access the Add Repository option using one of the options below:
  • Select Add repository option from File Menu (A)

OR

• • Right click on the ‘Visual Guard Console’ in the Left Navigation Panel and select Add repository option from the Popup Menu. (B)

OR

• • Click “Add repository…”  (C)
• The Repository Creation Wizard screen will be displayed as shown below:

• The wizard will automatically walk you through the repository creation.
• Click “Next >” to access the Next screen.

• Select the highlighted option (A) from the screen to create a repository using an existing repository.
• Click “Next >” to select a repository type.

• Select option (A) from the screen to create a File Repository.
• Click “Next >” to select the path of the Repository under which the existing repository exists; the Repository Location Selection screen will be displayed. 

• Select the path where the repository is to be created by clicking “…”  (A).
• This will be the location where the existing repository is stored.
• The selected path will be displayed in the highlighted section as shown below.

• The Authentication Mode selected for the existing repository will automatically be used for the new repository.
• Click “Finish” to complete the Repository Creation Process.
• The Repository will be displayed in the Left Navigation Panel as well as the Main Section on the Visual Guard Console.

• To access the repository, click on the option (A).
• The following screen will open and allow you to authenticate and access the repository.

• Select the Authentication Mode and specify the username and the password.
• The following repository related details will be displayed in the main area.

See Also:

• Creating New File Repository
• Selecting Existing SQL Repository
• Selecting Existing Oracle Repository
• Selecting Existing VG Server Repository

To view repository related details follow the steps below:

• Log in to the Repository.
• Click on the Repository Name to view the Repository Information and Application Details.
• Select the Repository Information Tab (A).

• The following details will be displayed to you:

• Following options will also be available:
  • Edit Password Policy
  • Download License Key
  • Request License Key
  • Cancel Request
  • Repository Migration Code

See Also:

• Viewing Repository User Attribute Detail
• Viewing Repository Module Details
• Viewing Application Details
• Viewing Web Portal Detail
• Viewing ADFS Server Details

To view the list of applications integrated in the repository follow the steps below:

• Log in to the Repository.
• Click on the Repository Name to view the Application Details.
• Select the Applications Tab (A).

• The following details will be displayed:

• Once the user clicks on the application details, he will be directed to Application Details page.

See Also:

• Viewing Repository Details
• Viewing User Profile Attributes’ Details
• Viewing Modules’ Details
• Viewing Web Portal Details

Visual Guard allows you to view the events that occurred in the repository or in the secured applications.

Follow the steps below to view the events:

• Log in to the repository.
• The details of the selected repository will be displayed as shown below.

• Access the Event Viewer option using one of the options below:
  • Right click on the repository name and select the Event Viewer menu (A) from the popup menu.

OR

• • Select Event Viewer menu item from the Action menu (B).
• The Event Log screen will be displayed as shown below.

Please Note:

• • If you select the repository node in the tree view and open the event viewer, you will see the log of all the applications secured in this repository, including the console by cliking on “Find” .
  • This gives you a comprehensive view of the security of your system. For example, you can see all the actions of a particular user throughout all applications.
  • If you want to see the event log of one application or of the console, you have first to select this application in the tree view, then open the event viewer.
• You can filter and view the events using various filter options (C).

• Once you click “Find” , the result will be displayed as shown below.

• The system allows you to perform following actions upon the event details:
  • Export to PDF
  • Clear log entries
  • Add Event Description
  • Edit Event Descriptions
  • Refresh: This option allows you to refresh the contents once you click on this option any new event will be appended to existing list.

Visual Guard allows you to generate report relevant to the selected entity.

Follow the steps below to generate documentation:

• Login to the Repository
• The repository details of the selected repository will be displayed as shown below.

• Access the Generate documentation option using one of the options below:
  • Right Click on the repository name and select the Generate documentation menu item (A) from the menu.

OR

• • Select Generate documentation menu item from Action Menu. (B)

OR

• • Select the repository and press Ctrl+Shift+R to Generate Documentation
• Generate documentation screen will be displayed.

• Specify the following details to request for a license key:

• Click “OK” if you want to save the details and generate the document.
• The report will be displayed to you as follows.

• Click “Cancel” if you want to Cancel the operation.

The Password Policy allows you to define password rules.

Note: If there is a change in password policy since the last login and password does not follow the new password policy, a message will be displayed prompting the user to change their password.

Follow the steps below to edit Password Policy.

• Log in to the Repository.
• The repository details of the selected repository will be displayed as shown below.

• Access the Edit Password Policy option using one of the options below:
  • Right Click on the repository name and select the Edit Password Policy menu item (A) from the menu.

OR

• • Select Edit Password Policy menu item from Action Menu. (B)

OR

• • Click on the Edit Password Policy option provided at the bottom of the Right Navigation Panel.
• The Edit Password Policy screen will be displayed as shown below:

• Specify the following details to edit password policy

• Click “OK”  if you want to save the details entered in Edit Password Policy.
• Click “Cancel”  if you don’t want to save the details entered in Edit Password Policy.

What is a Global MFA Policy? A Global MFA Policy in Visual Guard is a centralized set of rules and settings that define how MFA is applied across all applications and users within an organization.

In Winconsole to edit the global MFA policy follow the below steps.

Step 1: Click on the Repository –> you will see the page with details of the repository

Step 2: On the bottom left corner you will see the Edit Global MFA Policy link

Step 3: Fill in the required details.

• Select the type of method you are opting for the security.
  • OTP via email or phone
  • Secure link via email or phone

• The number of Grace logins (allows users a limited number of logins, or a period of time, to access a system without completing the usual authentication requirements) you would like to provide.

• Provide the setting required.-
  • Scope: choose where you want the setting to reflect either under the whole Repository or specific Application
  • Duration: You can mention the time till when you want this feature to be active till

• Provide the enrollment URL information

Repository deployment in Visual Guard refers to the process of deploying security configurations, such as roles, permissions, and user profiles, from a central repository to target environments. This deployment ensures consistency and synchronicity of security settings across different environments, such as development, testing, and production.

Visual Guard allows you to deploy the created repository. With this option you can make a copy of the whole repository to use it in the same system or the other system.

To deploy a repository, follow the steps below:

Step 1: Login to the Repository. 

Step 2: Click “Next >”  to continue the wizard or click “Cancel” to cancel the wizard.

Step 3: On clicking “Next >”  the screen below will be displayed.Choose either A – Export data in a deployment configuration file or B – Deploy in an existing repository

• If you choose A – Export data in a deployment configuration file follow the below steps. You get the below options
  • Option 1: Deploy application: This option will deploy the full content of the selected application
  • Option 2: Deploy the repository: This option will deploy yhr full content of the repository (users, roles, applications, permissions and much more)
  • Option 3: Deploy parameters of the repository: This option will only deploy parameters of the repository

Option 2:

Step 1: Deploy the repository

Step 2: Choose your prefered overwrite option weather you want to overwrite the existing repository or not

Step 3: Click on Finish to complete the deployment

Note: Once you click Finish you will get a notification to choose the path of where the file will be saved.

Option 3:

Step 1: Deploy parameters of the repository

Step 2: Choose weather you want to deploy all respository information or Select informaion to deploy (you can select which parameter you would like to deploy manual from each category.

Step 3: Click on Finish to complete the deployment

Note: Once you click Finish you will get a notification to choose the path of where the file will be saved.

If you choose B – Deploy in an existing repository follow the below steps.

Step 1: Click deploy in an existing respository and click Next

Step 2: Refer to the Option A steps further

Import Deployment Configuration Files

Importing deployment configuration files refers to the process of loading external files containing predefined settings and configurations related to the deployment of software or applications. These files typically include details such as environment-specific configurations, deployment targets, versioning information, and other parameters necessary for deploying the software effectively. Importing deployment configuration files streamlines the deployment process by providing a standardized way to configure deployment settings, ensuring consistency and accuracy across different environments and deployment scenarios.

To import the configuration files follow the below steps

Step 1: Login to the repository and click on Import deployment configuration file

Step 2: Select the path of where your configuration files are saved by clicking on the 3 dots and click OK

Step 3: Once the configuration is successfull you will receive a popup notifying the same

Follow the steps below to rename repository:

• Login to the Repository you want to rename.
• The repository details of the selected repository will be displayed as shown below.

• Access the Rename option using one of the options below:
  • Right Click on the repository name and select the Rename menu item (A) from the menu.

OR

• • Select Rename menu item from Action Menu. (B)

OR

• • Select the repository and click on F2
• The repository name will be displayed in editable mode

• Enter the new name. The repository name will be saved when focus is lost.

You can execute the maintenance operation to check and refresh all encrypted data

Follow the steps below to disconnect repository:

• Select the repository you want to disconnect.
• The details of the selected repository will be displayed as shown below.

• Access the Disconnect option using one of the options below:
  • Right click on the repository name and select the Disconnect menu (A) from the popup menu.

OR

• • Select Disconnect menu from the Action menu (B).

OR

• • Select the Visual Guard Console node in the tree view and click “Disconnect”  provided in the Right Navigation Panel.
• The repository will be disconnected and all the items under it will be hidden.

Visual Guard allows you to remove the selected repository node.

Please Note:

• The option “remove repository” allows you to totally erase a repository and all its content from your system.
• It is different from the option “delete from list” which allows you to delete the name of a repository from the treeview in the console (in this case the repository and its content are still in the database).

Follow the steps below to remove repository:

• Login to the Repository
• The repository details will be displayed as shown below.

• Access the Remove option using one of the options below:
  • Right Click on the repository name and select the Remove menu item (A) from the menu.

OR

• • Select Remove menu item from Action Menu. (B)

OR

• • Click “Remove”  provided in the Right Navigation Panel
• The user will be asked for confirmation.

• Enter the confirmation code and click “OK”  to accept the deletion.
• You can cancel the operation by clicking “Cancel” .

Visual Guard allows you to remove the selected repository from the list.

Please Note

• The option “remove repository” allows you to totally erase a repository and all its content from your system.
• It is different from the option “delete from list” which allows you to delete the name of a repository from the treeview in the console (in this case the repository and its content are still in the database).
• You can add the repository in the console using Selecting existing repository option.

You can add the repository in the console using Selecting existing repository option.

Follow the steps below to delete the repository from the list:

• Login to the Repository that needs to be deleted
• The repository details of the selected repository will be displayed as shown below. 

• Access the Delete from repository list option using one of the options below:
  • Right click on the repository name and select the Delete from repository list menu item (A) from the menu.

OR

• • Select Delete from repository list menu item from Action Menu. (B)

OR

• • Clicking “Delete from list”  provided in the Right Navigation Panel.
• The user will be asked for confirmation

• Click “Yes”  to continue or click “No”  to cancel

Users authenticate through Visual Guard’s integrated login system by providing a username and password, which are securely verified against Visual Guard’s user repository. This method offers a straightforward and reliable authentication approach, fully managed within the Visual Guard framework, ensuring centralized control and enhanced security for user access.

Step 1: Choose VisualGuard from the drop down list under the authentication –> enter the User Name and Password –> Click OK to sign in.

Visual Guard webconsole allows users to authenticate using their database credentials. This method ensures secure access by verifying the user’s identity directly against the database, enhancing security and integrating seamlessly with existing database systems.

Step 1: Choose Database from the drop down list under the authentication –> enter the User Name and Password –> Click OK to sign in.

Passwordless login is a method of authentication that allows users to access a system or application without requiring a traditional password. Instead of entering a password, users are authenticated through alternative methods such as magic link or SMS verification. In Visual Guard, passwordless login enhances security and user experience by providing convenient and secure authentication options that eliminate the need for users to remember and manage passwords.

Step 1: Choose Passwordless from the drop down list under the authentication –> enter the User Name –> Click OK to sign in.

Leverages integration with Active Directory to allow users to log in automatically using their Windows credentials, enabling seamless within enterprise environments, enabling seamless and secure single sign-on (SSO) within enterprise environments.

Step 1: Choose Windows Authentication from the drop down list under the authentication –> Under username, current logged in windows user name will be shown –> Click OK to sign in.

Note: This applies to local Active Directory and Microsoft Entra ID.

Users authenticate through their Windows credentials, leveraging the security infrastructure of the Windows operating system. Visual Guard integrates with Windows authentication to validate user identities, providing seamless access to applications based on Windows credentials.

Step 1: Choose Windows Authentication By Credential from the drop down list under the authentication –> enter the User Name and Password –> Click OK to Sign in.

Note: This applies to local Active Directory and Microsoft Entra ID.

Please follow the below steps to request for a license key in Visual Guard WinConsole.

• Step 1: Login to a repository

• Step 2: Right click on the repository to see a drop down of functions. Select request for license key from the drop down or from the icons given below on the same page.

• Step 3: Fill in the required details.
  • Email ID
  • First Name
  • Last Name
  • Company
  • Phone Number
  • Country
  • State
  • Number of users requested for this repository

• Step 4: Once the request is sent, the support team will process the key and you will be notified via email once it is generated. You will receive the steps of how to install the same.

Visual Guard allows you to download a License Key. For this option to work you need to Request for a license key first.

Follow the steps below to Download License Key:

• Login to the Repository.
• The repository details of the selected repository will be displayed as shown below.

• Access the Download License Key option using one of the options below:
• Right Click on the repository name and select the Download License Key menu item (A) from the menu.

OR

• Select Download License Key menu item from Action Menu. (B)

OR

• Click on the Download License Key option provided at the bottom of the Right Navigation Panel. (C)
• Download a License Key screen will be displayed asking for confirmation.                             

• Click “Yes” to accept or click “No” to cancel the operation.
• Once you click “Yes” the license key will automatically be replaced and will be displayed in License Key details.

Visual Guard allows you to Cancel a License Key Request. For this option to work you need to Request for a license key first.

Follow the steps below to Cancel License Key Request:

• Login to the Repository.
• The repository details of the selected repository will be displayed as shown below.

• Access the Cancel request option using one of the options below:
  • Right Click on the repository name and select the Cancel request menu item (A) from the menu.

OR

• • Select Cancel request menu item from Action Menu. (B)

OR

• • Click on the Cancel request option provided at the bottom of the Right Panel. (C)
• As soon as you select Cancel request option, the request is cancelled and Download License Key and Cancel request options are replaced with Request license key.

Configuring MFA involves setting up and managing the policies, methods, and settings for multi-factor authentication within a system. This includes enabling MFA for users, selecting the authentication factors (e.g., OTP, authenticator apps), defining fallback options, and customizing rules for specific applications or user roles. Proper configuration ensures secure access while maintaining usability.

In Visual Guard you have the option to configure for MFA on either the repository or specific application or both.

Refer to the below quick links to see the process of configuration.

• Configure MFA on the a specific application
• Configure MFA on the whole repository

Enrollment in MFA refers to the initial process of registering a user for Multi-Factor Authentication. During this process, the user sets up one or more authentication methods, such as receiving one-time passwords (OTPs), linking a mobile authenticator app (like Microsoft Authenticator). This ensures the user can securely verify their identity using multiple factors beyond just a password.

In Visual Guard we have 3 enrollment ways:

• Enroll via your Email ID
• Enroll via your Phone Number
• Enroll via Microsoft Authenticator

OTP (One-Time Password) or a secure link sent via email is used as an additional layer of security to enhance the authentication process.This method significantly reduces the risk of unauthorized access and is especially useful for protecting sensitive operations and transactions.

Step 1: Select the email address option

Step 2: Enter your Email ID and select Send Email

Step 3: Enter the secure code you may have received over the registered email ID and click on Validate

Step 4: Once your identity is validated, you can return to the application home page. Upon attempting to log in, you will be presented with a screen that offers you the choice of receiving either a link or an OTP (One-Time Password) to your registered email ID for authentication. Select your preferred method and click “Continue” to complete the authentication process successfully.

In Visual Guard, the OTP/Link via phone number feature allows users to authenticate themselves through their registered mobile number. When attempting to log in, users can choose to receive an OTP (One-Time Password) or a verification link sent directly to their mobile phone via SMS. This added layer of security ensures that only users with access to the registered phone number can complete the authentication process.This method enhances security by leveraging a second factor of authentication tied to the user’s mobile device.

Step 1: Select the phone number option

Step 2: Enter your Phone Number and select Send SMS

Step 3: Enter the secure code you may have received over the registered phone number and click on Validate

Step 4: Once your identity is validated, you can return to the application home page. Upon attempting to log in, you will be presented with a screen that offers you the choice of receiving either a link or an OTP (One-Time Password) to your registered phone number for authentication. Select your preferred method and click “Continue” to complete the authentication process successfully.

In Visual Guard, TOTP (Time-based One-Time Password) via Microsoft Authenticator provides an additional layer of security for user authentication. Users can set up their Microsoft Authenticator app to generate time-based, one-time passwords that refresh every 30 seconds. During the login process, users enter the current TOTP displayed on their Microsoft Authenticator app to verify their identity. This method ensures a secure and dynamic form of authentication, as the OTP is time-sensitive and unique to each login attempt.

Step 1: Select the Microsoft TOTP authentication option

Step 2: Select the type of device you use.

Step 3: Scan the QR code to download the application.

Andriod device

IOS device (Iphone)

Step 4: Once you open the application and scan the QR code your profile account will be added automatically.

Step 5: Enter the secure code that is generated by the application and click on Validate

Step 6: You will get a notification for the successfull enrollment, click on Go back to Application to login further.

Step 7: Once you can return to the application home page. Upon attempting to log in, you have to click on the Microsoft Authenticator icon and enter the code and click on Continue to complete the authentication process successfully.

Overview

Visual Guard provides the capability to select specific event types and set a start and end date for event aggregation. This feature allows you to focus on specific security events within a defined time range, providing targeted insights and analysis.

Event Aggregation and Filtering

Event aggregation is a key feature of Visual Guard that helps reduce the noise and complexity of individual security events. By aggregating events, Visual Guard groups them together based on common attributes or time intervals, providing a consolidated view of security activities.

By selecting event types and setting a start and end date, you can filter and aggregate the relevant security events that match your specific monitoring needs. This enables you to gain insights into the aggregated events within the defined time range, identify patterns, and extract valuable information for security analysis.

Utilizing Event Aggregation and Filtering

To leverage the event aggregation and filtering features in Visual Guard, follow these steps:

1. Access the Visual Guard Monitoring Console (WinConsole or WebConsole).
2. Navigate to the event monitoring section.
3. Specify the event types you want to focus on.
4. Set the start and end date for event aggregation.
5. Explore the aggregated events within the defined time range.
6. Analyze the filtered events to gain targeted insights and identify security trends.

Considerations and Best Practices

When utilizing event aggregation and filtering in Visual Guard, consider the following best practices:

• Select event types that are most relevant to your application’s security requirements and monitoring goals.
• Set a meaningful and appropriate date range for event aggregation, ensuring it aligns with your analysis objectives.
• Regularly review and adjust the event types and date range as needed to ensure you are monitoring the events that matter most to you.
• Determining Optimal Maintenance Time: Analyze the aggregated events and identify periods of low activity or reduced security events. These periods may indicate optimal times for performing maintenance activities such as software updates, database optimizations, or server maintenance. By scheduling maintenance during these periods, you can minimize disruptions to end users and ensure smooth operation of your applications.
• Detecting Connections During Late-Night Hours: Pay special attention to event occurrences during late-night hours when the activity is expected to be minimal. This can help you identify any unauthorized or suspicious connections that may occur during that time. By monitoring and analyzing the event patterns during these hours, you can detect potential security breaches and take appropriate actions to mitigate risks.

By following these best practices, you can leverage the event aggregation and filtering capabilities in Visual Guard to optimize your maintenance activities and enhance the security of your applications.

Viewing Individual Events

In addition to aggregating events, Visual Guard allows you to drill down into the aggregated sections to view the individual events that make up the aggregate. By clicking on a section of the column representing an aggregate of events of the same type, you can access a detailed list of the individual events. This allows for a granular examination of each event and provides additional context and information.

• Clicking on (B) will redirect to the screen displayed below

• Clicking on (C) will redirect to the screen displayed below

Detailed monitoring of the data is displayed using Historical Data.

To view the monitoring of historical data of the repository follow the steps below:

• Log in to the Repository.
• Click on the Repository Name to view the Monitoring Details.
• Select the Historical Data Tab (A) from the Monitoring Tab
   

• Clicking on (B) will redirect to the screen displayed below

The Chart Type of the Historical Data can also be displayed: missing links

• Hourly
• Daily
• Monthly 

Chart Type: Hourly

Detailed Monitoring of the data performed on hourly basis is displayed below:

Chart Type: Daily

Detailed Monitoring of the data performed on daily basis is displayed below:

Chart Type: Monthly 

Detailed Monitoring of the data performed on monthly basis is displayed below:

• Filtering the data through Chart Legends by clicking on the hand lens icon will display the screen below:

• The selected options will be displayed besides the Chart Legends which can be deselected later.

See Also: missing links

• Viewing Repository Details
• Viewing User Profile Attributes’ Details
• Viewing Modules’ Details
• Viewing Web Portal Details
• Viewing ADFS Server Details

To view the real time data of the repository follow the steps below:

• Log in to the Repository.
• Click on the Repository Name to view the Monitoring Details.
• Select the Real Time Data Tab (A) from the Monitoring Tab

• Clicking on (B) will redirect to the screen displayed below

• Filtering the data through Chart Legends by clicking on hand lens icon will display the screen below:

• The selected options will be displayed besides the Chart Legends which can be deselected later.

• Time Interval: The user can set the regular time interval (in seconds) by which you can monitor the events.
• Visible Range: The user can set the visible range (in minutes) for real time charts.
• Keep Monitoring: If the checkbox is checked, the user can monitor the actions even when the real-time chart screen is active or inactive.

See Also: missing links 

• Viewing Repository Details
• Viewing User Profile Attributes’ Details
• Viewing Modules’ Details
• Viewing Web Portal Details
• Viewing ADFS Server Details

Visual Guard now allows you to create group of user accounts.

A user group may contain:

• VG user accounts
• VG Groups
• Windows user account
• Windows Groups

Main features:

• Create/Read/Update/Delete groups through VG WinConsole, VG WebConsole and VG API.
• Hierarchical organization: Groups can contain users or sub-groups in it
• Group Permission Management: Roles can be related to any level of groups and will apply to all the users and sub-groups within this group.
• Hierarchical Administration rights: When the VG Administrator Role belongs to a group, their administration privileges are automatically restricted to the users and sub groups of that group.

Using Visual Guard you can perform following actions:

• Add Group
• Add Subgroups
• View and Modify Group
  • View and Modify Group Properties
  • View and Assign Roles
  • View and Remove User
• Rename Group
• Remove Group

Visual Guard allows you to filter the list of groups and select single/multiple groups.

Filter the list of Groups

• To filter the list of groups you are provided with the selection of the search criteria (A). You can click on the drop down and select the search criterion.

• As soon as you select the search criteria in the drop down (A), a Text Box/Drop Down appears (B) to enter value or select the value by which you want to search the record.

For example: In case you select Country Attribute as search criteria, then you will have to mention group name in the textbox.

• Click on “search” after entering/selecting the value by which record is to be searched. The list of users matching the search criteria will be visible in the below grid.

• You can filter the events using various filter options.

Select/De-select a Group

Select Group(s)

You can select either single/multiple groups by selecting check box besides the name of the groups (A).

You can also see the list of only selected groups by clicking on “Show Selected Groups” link (C).

As soon as you click on the “Show Selected Groups” link, one more grid appears (D) showing the list of Selected Groups from all the pages.

Note: The link “Show Selected Groups” toggles to link “Hide Selected Groups”. Hence you can click on “Hide Selected Groups” link (E) to hide the Grid showing selected groups (D)

– DE-SELECT GROUP(S)

To de-select a group you can either de-select the check box besides the group (A) or you can click on the stop sign icon in Grid (D).

If you want to de-select all the selected users then click on “Clear selection”.

– ASSIGN USERS TO GROUPS

Select the groups for which you wish to assign users. Click on “Assign Users to Groups” and then select the users you want to assign displayed in the below window.

After selecting the users “Assign Users to Groups” gets enabled. Clicking on the button will assign users to selected group(s).

EDIT ROLE

One can grant or revoke roles to the selected groups by clicking on “Edit role” . To know more click here !

Note: While granting a role to groups, if Is Role Propagated to Descendant Groups is set as Yes then the child groups will be assigned all the roles else No as displayed in the screen below.

Refresh Page

• • You can filter the list of groups by clicking on “Refresh” . This will update the group list with updated data.

You can create the sub groups under a parent group.

Subgroups inherit parent group roles.

Follow the steps below to create a sub group.

• Login to the Repository and select the Groups> Group Name under which the subgroup needs to be created.

• Access the Add Group option using one of the options below:
  • Right click on the Repository > Groups> Group Name from the Left Navigation Panel and select the Add Group option (A) from the popup menu

OR

• • Select the Add Group option from Action Menu. (B)
• The New group will be created under the Group Name as shown below:

• You can rename the group by double clicking on the group name (C). You can rename the new group. For example Project Lead
• The renamed group will be displayed as shown below:

See also: 

• Add Group
• View and Modify Group
• Rename Group
• Remove Group

The Visual Guard user Groups can contain subgroups.

You can grant N roles and N users to a group. Any user or sub-group inside the group may also have the granted role as well.

A Visual Guard Group can contain Windows users or Windows groups.

In order to create a group follow the steps below:

• Login to the Repository where you want to create a group.
• Access the Add Group option, using one of the options mentioned below:
  • Right click on the Repository > Groups from the Left Navigation Panel and select the Add Group option (A) from the popup menu.

OR

• • Select Repository >Groups Node from the Left Navigation Panel and select the Add Group option from Action Menu (B)

• The new group will be created under the Groups option as shown below:

• You can rename the group by selecting the group and pressing F2 key (C). For example Project Manager
• The renamed group will be displayed as shown below:

See Also:

• Add Subgroups
• View and modify Group
• Rename Group
• Remove Group

Visual Guard allows you to modify the Groups Details and manage the assigned roles and users of the Group

Follow the steps below to modify a Visual Guard Groups:

• Login to the Repository under which Group is to be modified.
• Click on “+” icon of Groups option available in Left Panel. List of Groups created under the selected repository will be visible (A)

• Select the Group from left panel which is to be modified.
• The details of Group will be displayed in right panel (B) as shown below.

• Following options will be available to you
  • View and Modify Group Properties
  • View and Assign Roles
  • View and Remove User

See Also:

• Add Groups
• Add Subgroups
• Rename Group
• Remove Group

Visual Guard allows you to modify Group’s Properties. 

To modify group details follow the steps below:

• Select the Repository > Groups from the Left Navigation Panel.
• Click on the Group Name to modify the Group.
•  The Properties Tab (A) is selected by default

• Following options will be available to you.

• Modify the details and click “Save” to save the details.
• The updated details will be displayed under the group name.

See Also:

• View and Remove Users
• View and Assign Roles

A profile of a group in Visual Guard refers to a collection of attributes or characteristics associated with a specific group within the security management system. These attributes typically include details such as the group’s name, description, permissions, roles, and any other relevant properties. Profiles of groups allow administrators to define and manage groups effectively, tailoring their settings to align with the organization’s access control policies and requirements. They serve as a central reference point for configuring and controlling access rights and privileges for members of the group across various applications and systems within the environment.

Step 1: Click on the group and you will see the properties associated with the group.

Step 2: Click on Profile and enter the required details and click Save.

Visual Guard allows you to create groups and manage roles assigned to the group. 

To view group details follow the steps below:

• Select the Repository > Groups from the Left Navigation Panel.
• Click on the Group Name to view the Group Properties.
• Select the Roles Tab (A).
• The roles inherited from the parent group will be highlighted.

• Following options will be available to you:

• You can modify the group roles using one of the options below:

  • Right-click on the Group Name in the Left Navigation Panel, select the Edit Roles option from the menu.

OR

• • Select the Edit Roles option from the Action Menu.

OR

• • Click on “Edit Roles” provided at the bottom of the Right Navigation Panel .

• Edit Roles screen will be displayed.

• Select the role that needs to be granted from list of roles (A).
• User can grant one role at a time. Once a role (A) is selected ” -> Grant” (B) will be enabled. 

• Click on “-> Grant” , the granted role will be displayed in Current role section (C).

• User can remove the role by selecting the role from Current roles list.
• Click on  “<- Revoke” to remove the role. The removed role will again be available in List of roles (D).

• Click on “OK” to save the roles or click on “Cancel” to discard the changes.
• Once user saves the details, the list of Current roles will be updated.

See Also:

• View and Modify Group Properties
• View and Remove Users

Visual Guard allows you to create groups and manage users assigned to the group.

To view and edit the list of users that have been assigned the selected group follow the steps below:

• Select the Repository > Groups from the Left Navigation Panel.
• Click on the Group Name to view the Group details.
• The Properties tab will be displayed by default. Select the Users Tab (A).

• The list of all users to whom the group has been currently assigned will be available to you.

Note :

• • Using above screen, you can only view the list of the users assigned to the Group.
  • You can click on the name of the user to Modify the User Details. You will not be able to Modify the “Groups” of the user from this “Edit User Details” Screen. Click here to know more about assigning groups to the User

ASSIGN USERS TO GROUP

• To assign more users to the selected Group, click on   . You will be provided with below screen:

• Select User(s). “Assign users to group” option will be activated. Click on  “Assign users to Group” to assign selected users to the Group.

REMOVE USERS FROM GROUP

• A Select User. Click here to know more about Selecting User
• As soon as the user is selected, “Remove users from group”  will be activated.

Note : The screen allows you to remove the users to whom this group has been assigned. As soon as the user is removed from the group the roles associated with the group will be revoked.

• As soon as you click on “Remove users from Group” , you will be asked for the confirmation.

• Click on “yes” to save the users or click on  “No” to discard the action.
• The assignment between the Group and the selected users will be removed.

See Also:

• View and Modify Group Properties
• View and Modify Role Details

To rename a group, follow the steps below:

• Select the Repository > Groups > Group name from the Left Navigation Panel.
• The details of the selected group will be displayed.

• You can access the Rename option using one of the options mentioned below:
  • Right-click on the Group Name in the Left Navigation Panel, select the Rename option from the menu. (A)

OR

• • Select the Rename option from the Action Menu. (B)

OR

• • Select the Group and press F2
• Enter the group name. The group name should be unique at the same level.
• Once you update the name, the updated details will be displayed as shown below.

See Also:

• Add Groups
• Add Subgroups
• View and Modify Group
• Remove Group

To remove the group, follow the steps below:

Note: The system does not allow you to remove a group that has sub group(s) associated with it.

• Select the Repository > Groups> Group Name from the Left Navigation Panel.
• The details of the selected Group will be displayed.

• Access the Remove option using any of the options mentioned below:
  • Right-click on the Group Name in the Left Navigation Panel, select the Remove option from the menu. (A)

OR

• • Select the Remove option from the Action Menu. (B)

OR

• • Select the group and press delete key.
• The group will be removed from the list. In case the users are associated with the group, the group related roles will be revoked from the user accounts.

See Also:

• Add Groups
• Add Subgroups
• View and Modify Group
• Rename Group

Visual guard allows you to duplicate a Shared Role within your system that mirrors an existing shared role, duplicating all similar permissions and responsibilities.

Note: This feature is exclusively available in VG 2024 and later versions.

Below are the steps to follow to duplicate an existing shared role.

Step 1: Open your application –> Go to Shared Roles –> select Shared Role –> select Duplicate Role

Step 2: Enter the Shared Role Name, check the selected items, if they all apply to your requirement then click on Ok, if not then make the necessary amendments.

You can choose to grant the below;

• Grant to User : You have the option to choose if this duplicated role should be granted to the user with or without identitcal users of the current role
• Grant to Group: You have the option to choose if this duplicated role should be granted to the group with or without identitcal groups of the current role
• Identical PersmissionSets: You can assign the PermissionSets to the role, these permission sets will be configured similarly across different roles or users, providing consistent access control within the system.
• Identical Permissions: You can assign the Permission to the role, these permissions may be configured similarly across different roles or users, providing consistent access control within the system.
• Identical Profile: Once you check this then the role profile details will be duplicated as well

Visual Guard allows you to assign roles to the users accounts. The roles helps to restrict access to the integrated application or Visual Guard Console.
In case the company uses multiple applications then the concept of shared roles proves to be extremely useful.

A shared role can be used for several applications allowing you to overcome the hassles of managing roles for each application individually.

Visual Guard provides various options to manage shared roles:

• Creating New Shared Role
• View Role Details
• Rename
• Remove
• Edit Users
• Edit Permission Set

Visual Guard allows you to create new shared role.

Note: You will be allowed to create the role only if you have been assigned the privilege. Refer roles section for more details on privilege

To create a new shared role follow the steps below:

Login to the Repository and select the Shared Roles .

• Access the New Shared Role menu using any of the options below:
  • Right click on the Shared Roles and select the New Shared Role menu (A) from the popup menu.

OR

• • Select the Repository > Shared Roles from the Left Navigation Panel and select the New Shared Role menu from the Action menu (B).
• The new shared role will be created under the Shared Roles as shown below:

• Once the new shared role is created, it will be displayed in the editable mode for renaming (C). You can rename the new shared role.
• The renamed role will be displayed as shown below:

Visual Guard allows you to create shared role(s).

Note: You will be allowed to view the role details only if you have been assigned the privilege. Refer roles section for more details on privilege

Follow the steps below to view Role details

• Select the Repository > Shared Roles > Role Name from the Left Navigation Panel.
• The details of the selected role will be displayed on the Right Navigation Panel (A) as shown below.

• Following options will be available to you
  • View Role Details
  • View Granted Users
  • View Granted Groups 

To view role related details follow the steps below:

• Select the Repository > Shared Roles > Shared Role Name from the Left Navigation Panel.
• Role Details will be displayed in the Role Tab (A).

• You can modify following user details using this module:

To view and edit the list of users that have been assigned to the selected shared role follow the steps below:

• Select the Repository > Shared Roles >Shared Role name from the Left Navigation Panel.
• The details of the selected shared role will be displayed in Role tab (A) as shown below.

• Select the Granted Users Tab (B).

• The list of all users to whom the role has been currently assigned will be displayed in a form of Grid (C).
• Grid (D) displays the list of selected users. This grid (D) will not be visible initially. For this you need to click on “Show Selected Users” option.
• The grid can be hidden by clicking on “Hide Selected Users” option. This option will be visible only if selected users grid is displayed on the page.

Note :

• • Using above screen, you can only view the list of the users assigned to the Shared Role.
  • You can click on the name of the user to Modify the User Details. You will not be able to Modify the “Roles” of the user from this “Edit User Details” Screen.
• Now, select user whose roles are to be revoked. Click here to know more about Selecting User.
• The list of Users is displayed in a form of a Grid. You can perform following actions on the user:
  • Grant role to users
  • Revoke role from users

GRANT ROLE TO USERS

• When you select option “Grant role to users” you are provided with a screen to select users to whom the role is to be assigned.

• Once the users are successfully assigned to the Group, below message will appear

REVOKE ROLE FROM USERS

• As soon as the user is selected, “Revoke role from users” will be activated.

Note : Using the above screen, you can only revoke the roles assigned to the user. The user can be assigned the roles using User module.

• As soon as you click on “revoke role from users” , you will be asked for the confirmation.

• Click “Yes” to save the users or click “No” to discard the action.
• The assignment between the Role and the selected users will be removed.

See Also:

• User Accounts
• Modifying Roles

To view the list of groups that have been assigned to the selected shared role follow the steps below:

• Select the Repository > Shared Roles > Role name from the Left Navigation Panel.
• The details of the selected role will be displayed.
• The details will be displayed in Role tab (A) as shown below.

• Select the Granted Groups Tab (B).

• The list of all groups that have been assigned the shared role will be displayed.

• You can only view the assigned groups.
• You can modify the groups using groups option provided in the left navigation panel.

See Also:

• Creating Shared Role
• Remove Shared Role
• Modifying Role details

Visual Guard allows you to rename the shared role(s).

Note: You will be allowed to rename the role only if you have been assigned the privilege. Refer roles section for more details on privilege

To rename the shared role follow the steps below:

• Select the Repository > Shared Roles > Shared Role name from the Left Navigation Panel.
• The detail of the selected shared role will be displayed as shown below.

• Access the Rename menu using any of the following options:
  • Right click on the shared role name and select the Rename menu (A) from the popup menu.

OR

• • Select the shared role name from the Left Navigation Panel and select the Rename menu from the Action menu (B).

OR

• • Select the shared role name from the Right Navigation Panel (C).
• Enter the shared role name. The shared role name should be unique.
• Once you update the name, the updated details will be displayed as shown below.

Visual Guard allows you to remove the created shared role(s).

Note: You will be allowed to remove the roles only if you have been assigned the privilege. Refer roles section for more details on privilege

To remove a shared role follow the steps below:

• Login to the Repository > Shared Roles > Shared Role name.
• The detail of the selected shared role will be displayed as shown below.

• Access the Remove menu using any of the following options:
  • Right click on the shared role name and select the Remove menu (A) from the popup menu.

OR

• • Select the shared role name from the Left Navigation Panel and select Remove menu from the Action menu (B).

OR

• Select the shared role name and press delete key.
• A Delete confirmation screen will be displayed.

• Click “YES” to continue the deletion or click “NO” to cancel the deletion.
• On clicking “YES” the shared role will be removed from the list of shared roles.

Visual Guard allows you to edit the permission set assigned to the shared role.

Note:  You will be allowed to edit permission sets only if you have been assigned the privilege. Refer roles section for more details on privilege

To edit the permission set follow the steps below:

• Select the Repository > Shared Roles > Shared Role name from the Left Navigation Panel.
• The details of the selected shared role will be displayed as shown below:

• Access the Edit Permission set menu using any of the following options:
  • Right click on the shared role name and select the Edit Permission set menu (A) from the popup menu.

OR

• Select the shared role name from the Left Navigation Panel and select the Edit Permission set menu from the Action menu (B).

OR

• • Select the Permission Set from the Right Navigation Panel (C). Click “…”  provided beside the Permission Set.
• A Grant permission sets screen will be displayed.

• Select the permission set from the List of permission sets (D) that need to be granted. The List of permission sets will display the permission sets of all the applications integrated with the Visual Guard.
• A shared role can be granted a single permission set only. Click “-> Granted role”  .
• The granted permission set will be displayed in Current granted permission sets (E).

• Once permission set is added to the Current granted permission sets, “<- Revoke”  will be enabled.
• You can remove the granted permission set by selecting the permission set from the Current granted permission sets (E).
• After granting the permission sets, click “OK” to save the changes or click “Cancel” to cancel the changes.

Visual Guard supports authentication based on DBMS account for Oracle 8 and higher and SQL Server 2000 and higher.

Visual Guard allows you to re-use user accounts and passwords defined in these DBMS. The credentials are stored in the SQL/ Oracle repository.

You can restrict the access to Visual Guard or any other application integrated with it using Roles and Permissions. Click here for more information on Roles.

Visual Guard allows you to perform following actions

• Creating Database User Account
• Modifying Database User Account
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Database User Account
• Filter and Select User

Visual Guard allows you to re-use user accounts and passwords defined in these DBMS.

Note:

• • You will be allowed to create the user accounts only if you have been assigned the privilege. Refer special roles section for more details on privilege
  • This option will be available only for SQL or Oracle repositories only.

Follow the steps below to create a Database User:

• Login to the Repository under which user account(s) is to be created.

• Access the Add Database User menu using one of the options below:
  • Right click on the Repository Name provided on the Left Navigation Panel and select Add Database User option.

OR

• • Right click on the Repository >Users menu provided on the Left Navigation Panel and select Add Database User option (A).

OR

• • Select the Repository from Left Navigation Panel and select the Add Database User menu item from Action Menu (B).
• The Select a database account screen will be displayed as shown below:

Note:

The list of accounts will only be displayed if the user account created in the sql server has server roles as sysadmin.

• Select the database from the available accounts and click “OK” .
• Add database account screen will be displayed as shown below:

• To create a new user account you have to provide the following details:

• After specifying the roles for the user, click “OK” to save the user details.
• Click “Cancel” if you do not want to create the user.
• The new user account (A) will be displayed under Users menu in Right Panel.

• All Database Users are represented with a different icon i.e.

See Also: 

• Modifying Database User Account
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Database User Account
• Filter and Select User

Visual Guard allows you to modify the existing user accounts.

Note: You will be allowed to modify the details only if he has been assigned the privilege. Refer special roles section for more details on privilege

To edit the Database user details perform the following steps:

• Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
• Click on the name of the user displayed in the Grid. “Edit User Details” Screen will open as shown below.

• User can modify following user details using this module

See Also :

• Modifying User Profile Details
• User Operations
  • Search and Select Users
  • Lock/Unlock Users
  • Approve/Unapprove Users
  • Delete Users
  • Edit the Profile of a User
  • Edit the Roles of a User
  • Edit the Groups of a User
  • Review the Permissions of a User
  • Monitor the Operations of a User
•  
   

Visual Guard supports Custom authentication. You can add custom modules to the application.

You can create any type of identity module – Authentication module (custom or market available authentication providers – google, facebook, twitter etc.), and VG can directly adopt it without any change, and you can have your desired authentication mode for your applications. Click here to know more.

For these Custom Modules, the User details are stored in the Customer database itself, Visual Guard will access the details from the Customer Database, whenever required.

You can restrict the access to Visual Guard or any other application integrated with it using Roles and Permissions. Click here for more information on Roles.

Visual Guard allows you to perform following actions:

• Creating Custom User Account
• Modifying Custom User Account
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Custom User Account

Visual Guard allows you to create Custom User accounts.

Note: You will be allowed to create the user accounts only if you have the privilege for it.

In the below example, Facebook2 is a custom module added to the system. Here we will be creating a custom user for the Facebook2 module.

Follow the steps below to create a User for the Custom Identity Module:

• Login to the Repository under which user account(s) is to be created.
• Access the Add New Custom User feature using one of the options below:
  • Right click on the Repository Name provided on the Left Navigation Panel and select Add Facebook2 User Context Menu (A).

• Right click on the Repository > Users menu provided on the Left Navigation Panel and select Add Facebook2 User (B).

• • Select the Repository from Left Navigation Panel and select the Add Facebook2 User from Actions (C).

• The Create Custom User screen will be displayed as shown below:
• Note: The layout of this screen will change depending on the type of module. 

• To create new user account you have to provide following details:

• For example to create user, specify details as displayed below:

• After specifying above details click “OK” to Save the user details.
• Click “Cancel” if you do not want to create the user.
• The new user account (D) will be displayed in the Grid on Right side.

See Also:

• Modifying Custom User Account
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Custom User Account

Visual Guard allows you to modify the existing user accounts.

Note:You will be allowed to modify the details only if you have been assigned the privilege. Refer special roles section for more details on privilege.

To edit the Custom Account user details follow the steps below:

• Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
• Click on the name of the user displayed in the Grid. “Edit User Details” Screen will open. 

• You can modify following user details using this module.

See Also

• Modifying User Profile Details

Visual Guard allows you to modify the existing user accounts.

Note: You will be allowed to modify the details only if you have been assigned the privilege. Refer special roles section for more details on privilege.

Follow the steps below to modify a Visual Guard User Account:

• Login to the Repository under which user account(s) is to be modified.
• Click on Users menu under the repository. List of all user accounts that have been created under the selected repository will be displayed as shown below: 

• Select the Users by clicking on the username (A).
• You can also select the user by filtering the list of users using the filter option. Click here to know more about filter option.
• The details will be displayed in User Details tab as shown below.

• Following options will be available to you
  • Modifying User Details

See Also:

• Creating Visual Guard User Account
• Lock/Unlock single or multiple users
• Approve/ Unapprove single or multiple users
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Visual Guard User Account
• Filter and Select User

Visual Guard allows you to filter the list of users and select single/multiple users.

Following functionalities are provided:

• • Filter the list of users
  • Select/De-select a User
  • Refresh Page

• Filter the list of Users

  • To filter the list of users you are provided with the selection of the search criteria (A). You can click on the drop down and select the search criterion.

• • As soon as you select the search criteria in the drop down (A), a Text Box/Drop Down appears (B) to enter value or select the value by which you want to search the record.

For example: In case you select User Name as search criteria, then you will have to mention user name in the textbox.

Note: The Users assigned with the System Roles are highlighted with a Yellow colored icon and all other users are highlighted with a Blue colored icon

• • Click on “Search” after entering/selecting the value by which record is to be searched. The list of users matching the search criteria will be visible in the below grid.

• • You can filter the events using various filter options.

• Select/De-select a User

  • SELECT USER(S)

You can select either single/multiple users by selecting check box besides the name of the user (A).

You can also see the list of only selected users by clicking on “Show Selected Users” link (C).

As soon as you click on the “Show Selected Users” link, one more grid appears (D) showing the list of Selected users from all the pages.

Note: The link “Show Selected Users” toggles to link “Hide Selected Users”. Hence you can click on “Hide Selected Users” link (E) to hide the Grid showing selected users (D)

• • DE-SELECT USER(S)

To de-select a user you can either de-select the check box besides the user (A) or you can click on the icon   in Grid (D).

If you want to de-select all the selected users then click on  .

Refresh Page

• You can filter the list of users by clicking on  . This will update the users list with updated data. 

The Locked Out menu is used to lock the user from logging in. The users will be automatically locked out in case they exceed maximum number of invalid login attempts. Such user accounts can be un-locked by Master Admin User only.

Please Note: This operation can be performed only on Visual Guard user accounts.

The Locked out status of the user can be modified in two ways:

• • Using List of Users Screen
  • Using Edit User Screen

• Using List of Users Screen

Note: Below steps allows you to Lock/Un-Lock the accounts of Multiple Users.

• • Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
  • Select the user by clicking on the Check Box placed besides the Name of the User (A).
  • You can also select user after filtering the list of users by using the filter option. Click here to know more about filter option.

Note: The options at the bottom of the screen will be active only if at least one user is selected in the grid.

Note: You can select either single/multiple users by selecting multiple check boxes hence you can Lock/Un-Lock single/multiple users at a time.

• • Grid (B) displays the list of selected users. This grid (B) will not be visible initially. For this you need to click on “Show Selected Users” option.
  • The grid can be hidden by clicking on “Hide Selected Users” option. This option will be visible only if selected users grid is displayed on the page.
  • Click on “Lock” to Lock the account of the user OR click on “Lock” to unlock the account of the user.

• Using Edit User Screen

Note: Below steps allows you to Lock/Un-Lock the account of Single User.

• Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
• Click on the name of the user displayed in the Grid. “Edit User Details” Screen will open.

• • Select the “Locked Out” check box (A) to Lock the account of the user OR De-Select the check box to un-lock the account of the user. The locked out user will not be able to access his account.
  • The “Locked Out” check box in “Edit User Details” screen will be selected or de-selected based on the action performed by the user.
  • Now, click on “Save” to save the details.

See Also:

• Creating Visual Guard User Account
• Modifying Visual Guard User Account
• Approve/Unapprove single or multiple users
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Visual Guard User Account
• Filter and Select User

The Approved menu shows whether the user account has been approved to be authenticated in the selected repository.

To modify the Approved status, follow either of the steps mentioned below:

• • Using List of Users Screen
  • Using Edit User Screen

• Using List of Users Screen

Note: Below steps allows you to Approve/UnApprove Multiple Users.

• • Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
  • Select the user by clicking on the Check Box placed besides the Name of the User (A)
  • You can also select user after filtering the list of users by using the filter option. Click here to know more about filter option.

Note: You can select either single/multiple users by selecting multiple check boxes. Hence you can Approve/Un-Approve single/multiple users at a time.

• • Grid (B) displays the list of selected users. This grid (B) will not be visible initially. For this you need to click on “Show Selected Users” option.
  • The grid can be hidden by clicking on “Hide Selected Users” option. This option will be visible only if selected users grid is displayed on the page.
  • Click on “V Approve” to Approve the user account OR click on   to Un-Approve the user account.
  • The “Approved” check box in “Edit User Details” screen will be selected or de-selected based on the action performed by the user.
  • If the user is un-approved, then the user will not be allowed to login. When the user tries to login an error message will be displayed as shown below

• Using Edit User Screen

Note: Below steps allows you to Approve/UnApprove Single User.

• • Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
  • Click on the name of the user displayed in the Grid. “Edit User Details” Screen will open.

• • Select the “Approved” check box to Approve the account of user OR De-Select the check box to un-approve the account of the user.
  • Now, click on “Save” to save the details.

See Also:

• Creating Visual Guard User Account
• Modifying Visual Guard User Account
• Lock/Unlock single or multiple users
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Visual Guard User Account
• Filter and Select User

Visual Guard allows you to delete user accounts.

Follow the steps below to delete a user account.

• Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
• Select the user by clicking on the Check Box placed besides the Name of the User (A).
• You can also select the user by filtering the list of users using the filter option. Click here to know more about filter option.

• Grid (B) displays the list of selected users. This grid (B) will not be visible initially. For this you need to click on “Show Selected Users” option.
• The grid can be hidden by clicking on “Hide Selected Users” option. This option will be visible only if selected users grid is displayed on the page.
• Click on “Remove”  to remove the selected User(s).
• You will be asked for confirmation before the user is removed from the repository.

• Click “Yes” to delete the user or click “No” to cancel the deletion.
• The user account will be removed from the list of users.

Note:

• • Currently Logged in user cannot be deleted.
  • If multiple users are selected, then they all will be deleted.

See Also:

• Creating Visual Guard User Account
• Modifying Visual Guard User Account
• Lock/Unlock single or multiple users
• Approve/Unapprove single or multiple users
• Grant Roles to multiple users
• Grant Groups to multiple users
• Filter and Select User

The “Edit User” feature typically allows administrators or privileged users to modify the attributes, permissions, roles, and other settings associated with a specific user account within the application’s security framework. This function provides a user-friendly interface for administrators to manage user profiles efficiently, including updating personal information, adjusting access rights, assigning or revoking roles, and configuring other security-related parameters as needed.

Click on the specific User

Once you click on the User name, the below features will be displayed.

A User is an individual who interacts with an application that is secured using Visual Guard’s security framework. Each user typically has a unique identity within the application’s security system and is granted specific permissions and access rights based on their role or privileges.

Here you can edit/view the below details of a user;

• Personal Information
• User Account details
• Password details
• Other VG ID details

Once you are done with the updates yon the page make sure to click on Save so that your changes are reflected.

Profiles help administrators manage permissions more efficiently by grouping users with similar access requirements together.

Visual Guard allows you to modify the existing user profile details i.e the Job title, First Name and Last Name.

To Edit more details of the user click on the below link

These are sets of permissions and access rights granted to users, facilitating efficient management of access control by grouping users with similar privileges together. Users assigned to specific roles inherit the permissions associated with those roles, streamlining security administration in applications.

• You can click on the Eye icon to view the permissions that have been assigned to the role mentioned and to Edit further click below on Edit Roles.

• When you click on Edit Roles, you will get the below window where you can assign the roles to applications respectively.

Step 1: You can select the application you want to edit/view –> select roles from the left side –> click on Grant

Step 2: Similarly if you want to remove any assigned role then select the role from the right side –> click on revoke

Step 3: Click on Ok once your updates are done so that your updates get reflected

For more features related to roles refer to the below pages

Groups are collections of users organized together for simplified permission management, enabling administrators to assign common access rights and privileges to multiple users simultaneously. Group memberships streamline security administration by applying permissions uniformly to users with similar roles or responsibilities.

• You can edit/view the groups by clicking on Groups
• You can view what permissions the groups have been assigned by clicking on the Eye Icon
• You can also see the group Hierarchy
• Incase you wan to edit the group click on Edit Group

• When you click on Edit Groups, you will get the below window where you can view the groups and edit them by adding and removing as per your requirement.

Click on Ok once your updates are done so that your updates get reflected.

To know about what can be done with Groups, refer to the below link

These refer to the capability to track and log user actions and access to resources within an application, facilitating compliance, security monitoring, and troubleshooting efforts. Administrators can configure audit permissions to capture specific events or actions, providing a comprehensive audit trail for accountability and analysis purposes.

Visual Guard allows you to view the permissions of the existing user accounts.

To modify the groups of the user, follow the following steps:

• Click on the Hierarchy Icon under the Coming from column from the right to know where does the permission come from
• Permission screen will be displayed as shown below. 

Audit activities entail monitoring and logging user interactions, access attempts, and system modifications within an application, enabling comprehensive tracking for compliance, security, and troubleshooting purposes. Administrators can configure audit activities to record specific events or behaviors, ensuring accountability and facilitating analysis of system activity.

• Here you can see the log of the user, what time and date they logged in, if it successful or not, event ID, machine name, severity
• You can also export the activity via PDF or Excel as per your preference.

This involves real-time tracking and analysis of user activities, system performance, and security events within an application, enabling proactive identification of anomalies or potential security breaches. Administrators can utilize monitoring features to maintain application integrity, enforce security policies, and respond promptly to emerging issues.

This feature allows to monitor the occurances of important events for specified time intervals for specific user in user friendly graphical format.

Attendance Hours

• Under monitoring section you can view the successful and invalid logons for the users
• You can use the start and end date feature to view results as per your requirement
• You can also export the report in PDF,PNG or excel format as per you preference

Historical Data

• Here you can view the historical data of the specific user
• You have the option to browse through all the applications that are common with that specific user
• You can choose the start and end date for the details you require
• Here you can also choose the chart legends where in you can choose the type of details you want of the either successful logons or invalid logons
• Additionally here you can choose the chart legends meaning the time period of the user i.e Daily, Hourly, Monthly
• You can also export the report in PDF,PNG or excel format as per you preference

See Also :

• Attendance Hours
• Historical Data
• Real time 

Visual Guard has its own membership provider to manage user accounts and passwords.

The credentials are stored in the Visual Guard repository.

You can restrict the access to Visual Guard or any other application integrated with it using Roles and Permissions. Click here for more information on Roles.

Visual Guard allows you to perform following actions

• Creating Visual Guard User Account
• Modifying Visual Guard User Account
• Lock/Unlock single or multiple users
• Approve/Unapprove single or multiple users
• Grant Roles to multiple users
• Grant Groups to multiple user
• Deleting Visual Guard User Account
• Filter and Select User

Visual Guard allows you to create new Visual Guard user accounts.

Note: You will be allowed to create the user accounts only if you have been assigned the privilege. Refer special roles section for more details on privilege

Follow the steps below to create a Visual Guard User:

• Login to the Repository under which user account(s) is to be created.

• Access the New Visual Guard User menu using one of the options below:
  • Right click on the Repository Name provided on the Left Navigation Panel and select New Visual Guard User menu.

OR

• • Right click on the Repository >Users menu provided on the Left Navigation Panel and select New Visual Guard User menu (A).

OR

• • Select the Repository from Left Navigation Panel and select the New Visual Guard User menu from Action Menu (B).
• The Create new user screen will be displayed as shown below:

• To create new user account you have to provide following details:

Role Assignment: 

This section displays the list of available and assigned roles. You can grant or revoke the roles using this section. 

• For example to create user Johnson specify details as displayed below:

After specifying above details click “OK” to Save the user details.

Click “Cancel” if you do not want to create the user.

The new user account (A) will be displayed in the Grid on Right side. 

See Also:

• Modifying Visual Guard User Account
• Lock/Unlock single or multiple users
• Approve/Unapprove single or multiple users
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Visual Guard User Account
• Filter and Select User

Visual Guard allows you to modify the existing user accounts.

Note: You will be allowed to modify the details only if you have been assigned the privilege. Refer special roles section for more details on privilege.

To edit the Visual Guard user details perform the following steps:

• Select a Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
• Click on the name of the user displayed in the Grid. “Edit User Details” Screen will open, as shown below. 

• You can modify following user details using this module.

See Also

• Modifying User Profile Details
• User Operations
  • Search and Select Users
  • Lock/Unlock Users
  • Approve/Unapprove Users
  • Delete Users
  • Edit the Profile of a User
  • Edit the Roles of a User
  • Edit the Groups of a User
  • Review the Permissions of a User
  • Monitor the Operations of a User

Visual Guard supports Windows authentication. If you use the Windows authentication mechanism, passwords are created, stored, and administrated in Active Directory.

Visual Guard enables to search for a user in Active Directory. When the user is found, Visual Guard stores his security identifier (SID) in the repository.

You can restrict the access to Visual Guard or any other application integrated with it using Roles and Permissions. Click here for more information on Roles.

Visual Guard allows you to perform following actions:

• Creating Window User Account
• Modifying Window User Account
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Window User Account

Visual Guard allows you to modify the existing user accounts.

Note:

• • You will be allowed to modify the details only if you have been assigned the privilege. Refer special roles section for more details on privilege.

To edit the Window user details perform the following steps:

• Select Repository > Users from the Left Navigation Panel. All the users will be displayed in the Grid in Right Panel.
• Click on the name of the user displayed in the Grid. “Edit User Details” Screen will open.

• You can modify following user details using this module

See Also

• Modifying User Profile Details
• User Operations
  • Search and Select Users
  • Lock/Unlock Users
  • Approve/Unapprove Users
  • Delete Users
  • Edit the Profile of a User
  • Edit the Roles of a User
  • Edit the Groups of a User
  • Review the Permissions of a User
  • Monitor the Operations of a User
•  
   

Visual Guard allows you to add Windows user accounts.

Note:

• • You will be allowed to access the user accounts only if you have been assigned the privilege. Refer special roles section for more details on privilege

Follow the steps below to create a Windows User:

• Login to the Repository under which user account(s) is to be created. 

• Select the Add Windows User or Group menu using one of the options below:
  • Right click on the Repository Name provided on the Left Navigation Panel and select Add Windows User or Group menu.

OR

• • Right click on the Repository > Users menu provided on the Left Navigation Panel and select Add Windows User or Group menu (A).

OR

• • Select the Repository from Left Navigation Panel and select the Add Windows User or Group menu from Action Menu (B).
• The Add Windows User or Group screen will be displayed as shown below:

Click “Objects Types” (A) to select the Object Type. Object Types screen will be displayed.

• You can select all or any one of the options available in the Object Types screen.
• Click “OK” to accept the selection. The selected options will be displayed in ‘Select this object type’ (A) field on Select Users or Groups screen.

• Select the location where the object type is located by clicking “Locations…”  (B). Locations screen will be displayed as below:

• The list of all Domains, Sub Domains, and Groups etc available on your network will be displayed.
• Accept the selection by clicking “OK” . The selected location will be displayed in ‘From this location’ field on Select Users or Groups screen.
• Click “Cancel” to discard the selection

• Enter the object name in ‘Enter the object name to select’ field (A). You can view examples of allowed object names by clicking on examples link (B).
• You can also search for object names by clicking “Check name”. The system will allow searching name in the selected location.
• The name of the selected user will be listed as shown below

• You can click “Advanced…” to perform advanced search.
• Click “OK” to select the selected user. You can discard the selection by clicking “Cancel”.

Note: “OK” and “Check names” will only be active if any name has been specified in the ‘Enter the object name to select’ field.

• Once the selection is complete, the system will allow you to grant roles for the selected repository. 

• The selected object name will be displayed; you can alter the name by clicking “Select…” (A).
• The list of roles available for allocation will be displayed in the List of Roles section (B).
• You can grant one role at a time. When role (C) is selected, “-> Grant” (D) will be enabled.

• Click “-> Grant” , the granted role will be displayed in Current role section (E).

• You can remove the role by selecting the role from Current roles list.
• Click “<- Revoke” to remove the role. The removed role will again be available in List of roles (F).

• Click “OK” to save the roles and user type or click “Cancel” to discard the changes.
• The new user account (A) will be displayed in the Grid on Right side.

• The Windows user, when created are displayed with a separate icon i.e. and if a role is been assigned to these users apart from default role then the icon will be.

See Also : 

• Creating Windows User 
• Modifying Window User 
• Grant Roles to multiple users
• Grant Groups to multiple users
• Deleting Window User Account

What is an application?

In Visual Guard, an application refers to a specific system or software that requires security management, such as user authentication and role-based access control. Visual Guard integrates with applications, allowing administrators to define and enforce security policies, manage user roles, and handle permissions. Each application connected to Visual Guard can be managed centrally through Visual Guard’s repository, and the security rules can be applied across multiple environments, such as development, test, and production.

Applications in Visual Guard can be built using various technologies, such as .NET or PowerBuilder, and Visual Guard provides APIs to integrate these applications with its security framework.

Key Aspects:

1. Centralized Security Management: Visual Guard provides a single platform to manage user authentication and authorization across multiple applications, whether desktop, web, or cloud-based
2. Role-Based Access Control (RBAC): It supports assigning specific roles and permissions to users, ensuring that only authorized personnel can access certain parts of the application
3. Integration with Multiple Technologies: Visual Guard integrates with various platforms like .NET, PowerBuilder, and even custom applications, making it versatile across different development environments
4. Strong Authentication Mechanisms: It supports multi-factor authentication (MFA) using OTP, TOTP, and other methods, enhancing security
5. Comprehensive Reporting and Auditing: Visual Guard allows for real-time monitoring of user activities, ensuring visibility and control over security policies

How to create an application in Visual Guard

Step 1: Right click on the Repository –> Click on New Application

Step 2: Follow the steps to create the application using the technology of your choice.

• Winform, WPF, Console
• .Net Core Console Application (.exe, .dll)(.Net Core 2.0 or Higher)
• ASP.Net Web Site or Web Service
• ASP.Net Web Application or Web Service Application
• Power Builder Application
• Other Applications

Visual Guard allows you to integrate Winform applications and set permissions for accessing the integrated application.

Note: Visual Guard must be integrated with the selected application before this wizard can be run. For WCF services you must specify the type of application hosting the service.

To add a new WinForm application follow the steps below:

Access the Application Creation Wizard using the path Repository > New Application

The Application Creation Wizard will be displayed.

• Select the Winform, WPF, Console, Windows Service option (A).
• The wizard will automatically walk you through the application integration.
• Click “Next >”  to access the next screen and indicate whether the Visual Guard runtime is already integrated in the system.

• Option (B) will be selected by default. Select option (A) to move to the next step.
• The Visual Guard Runtime should be integrated in the application to move to the next step. 
• Click “Next >”  to access the next screen and specify the main assembly of the application that will act as an entry point.

• Select the path where the application is being stored by clicking “…”  (A).
• The browsing screen will be displayed as shown below

• You can select only assemblies having extensions .dll or .exe.
• Select the script language in which you want to edit the script associated to actions. By default the application’s language will be detected automatically as shown below.

• Click “Next >”  to access the next screen and specify the default options of the application.

• The options will be available for selection Allow anonymous sessions, Enable default role, and Generate Visual Guard configuration files. You can select any one or all of the options.
• After selecting the appropriate options click “Finish” to finish the wizard. The application will be integrated and displayed as shown below.

See also:

• Integrating New Applications
• Integrating a New Website Application
• Integrating a New Powerbuilder Application
• Integrating Other Applications

Visual Guard allows you to integrate Website applications and set permissions for accessing the integrated application.

Note: Visual Guard must be integrated with the selected application before this wizard can be run. For WCF services you must specify the type of application hosting the service.

To add a new Website application follow the steps below:

• Access the Application Creation Wizard using the path Repository > New Application
• The Application Creation Wizard will be displayed.

• Select the ASP.Net Web Site or Web Service (.Net 2.0 or higher) option (A).
• The wizard will automatically walk you through the application integration.
• Click “Next >” to access the Next screen and indicate whether the Visual Guard runtime is already integrated in the system.

• Option (B) will be selected by default. Select option (A) to move to the next step.
• The application should be integrated to move to the next step. 
• Click “Next >”  to access the Next screen and specify the main assembly of the application that will act as an entry point.

• Select the path where the application is being stored by clicking “…” (A).
• The browsing screen will be displayed as shown below.

• You can select the folder where the website is stored.
• Please Note: It is compulsory that web config file exists in the selected folder.
• Select the script language in which you want to edit the script associated to actions. By default the application’s language will be selected.

• Click “Next >”  to access the Next screen and specify the default options of the application.

• The options will be available for selection Allow anonymous sessions, Enable default role, and Generate Visual Guard configuration files. You can select any one or all of the options.
• Once the selection is complete click “Finish” to finish the wizard. The application will be integrated and displayed as shown below.

Visual Guard allows you to integrate Power Builder applications and set permissions for accessing the integrated application.

Note: Visual Guard must be integrated with the selected application before this wizard can be run. For WCF services you must specify the type of application hosting the service.

• To add a new Power Builder application follow the steps below:
• Access the Application Creation Wizard using the path Repository > New Application
• The Application Creation Wizard will be displayed.

• Select the Power Builder Application option (A).
• The wizard will automatically walk you through the application integration.
• Click ” Next >” to access the Next screen and specify the main assembly of the application that will act as an entry point.

• Select the path where the application is being stored by clicking “…” (A).
• The browsing screen will be displayed as shown below.

• You can select the file from here.
• Please Note: It is compulsory that power builder config file exists in the selected folder.

• Click ” Next >” to access the Next screen and specify the default options of the application.

• The options will be available for selection Allow anonymous sessions and Enable default role. You can select any one or all of the options.
• Click on Finish to access the below screen and specify the configuration file settings of the application.

• You can modify the configuration files.

• Click “Test” to test the configuration file.
• Once the selection is complete click “OK” to finish the wizard. The application will be integrated and displayed as shown below.

Visual Guard allows you to integrate Other applications such as Java, PHP and set permissions for accessing the integrated application.

Technologies other than .Net such as C++, Java, Powerbuilder and PHP call the VG Server in Public Mode to use the features offered by Visual Guard.

Note: In case of other applications you will not be able to create dynamic actions, you can call only the web services to run the roles with the intergrated application.

• To add an Other application follow the steps below:
• Access the Application Creation Wizard using the path Repository > New Application
• The Application Creation Wizard will be displayed.

• Select the Other Application option (A).
• The wizard will automatically walk you through the application integration.
• Click “Next >” to access the Next screen and enter the application name.

• Click “Next >” to access the next screen and specify the default options of the application.

• The options will be available for selection Allow anonymous sessions, Enable default role. You can select any one or all of the options.
• Once the selection is complete click “Finish” to finish the wizard. The application will be integrated and displayed as shown below.

Visual Guard allows you to create new version for the integrated application.

To create a new version follow the steps below:

• Select the Repository > Application > Application name from the Left Navigation Panel.
• The details of the selected application name will be displayed as shown below.

• Access the Create new version menu using any of the options below:
  • Right click on the application name from the Left Navigation Panel and select the Create new version menu (A) from the popup menu.

OR

• • Select the application name from the Left Navigation Panel and select the Create new version menu from the Action menu (B).
• A Create new version screen will be displayed.

• By default, the New Version (C) number will be incremented by one.
• You can also enter the new version in the New Version (C) section.
• Click on the check box if you want to regenerate configuration files. Click here to know more about regenerating the configuration files.
• Click “OK” to continue or click “Cancel” to cancel the creation.
• The new version will be created and displayed as shown below.

Visual Guard allows users to modify the details of the application integrated with it.

Follow the steps below to modify the details of an integrated application.

• Login to the Repository under which the application details are to be modified.
• Select the application from the Left Navigation Panel, the application details will be displayed on the Right Navigation Panel as shown below.

• You can modify following details of the application.

The Name indicates the name of the application that is being integrated.

To modify the Name, follow the steps below:

• Select a Repository > Application from the Left Navigation Panel.
• The application details of the selected application will be displayed as shown below.

• Modify the Name using one of the options below:
  • Right-click on the application name in the Left Navigation Panel and select the Rename menu (A).

OR

• • Select the Rename menu from the Action menu (B).

OR

• • Click on the Name from the Right Navigation Panel (C).

OR

• • Press F2 after selecting the application name.
• Enter the new name. The name should be unique.
• Once you update the name, the updated details will be displayed as shown below:

This description displays brief information about the selected application.

To modify the Description related to the application follow the steps below:

• Select the Repository > Application name from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below:

• Click on the Description option on the Right Navigation Panel (A).
• Enter the new Description. The new Description will be stored automatically.

The Action Script Language option allows you to change the action script language used to edit scripts associated to actions.

Note: Modify Action Script Language only if you know the appropriate language used to build the application otherwise the application might not build

To modify Action Script Language follow the steps below:

• Select a Repository > Application name from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below:

• Click on the Action Script Language option on the Right Navigation Panel (A), v will be displayed.
• Click v , a dropdown list will appear.
• Select any one of the languages available i.e. VB.Net or CSharp or Neutral.
• The selected value will be stored automatically.

The Assembly Path displays the full path of the main assembly of the application.

To modify the Assembly Path follow the steps below:

• Select the Repository > Application name from the Left Navigation Panel.
• The detail of the selected application will be displayed as shown below:

• Click on the Assembly Path option from the Right Navigation Panel (A), “…” will be displayed.
• Click “…”  to select a different path of the main assembly.
• The changed path will be stored automatically.

If your application loads some assemblies dynamically and you want to define security actions for classes located in these assemblies you can do so using Modify Other Assemblies option.

Visual Guard allows you to specify the list of these assemblies in Other Assemblies.

To modify other assemblies follow the steps below:

• Select the Repository > Application name from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below.

• Click on the Other Assemblies from the Left Navigation Panel, “…” will be displayed.
• Click “…” the Other Assembly Files screen will be displayed.

• Click “Add Assemblies” (B) to add more assemblies or click “Add Folder” (C) to add a folder containing assemblies.
• The added assemblies will be displayed in the Other Assembly Files screen as shown below.

• After selecting the required assemblies click “OK” to save the selected assemblies or click “Cancel” to cancel the selection.
• The selected assemblies will be displayed as shown below.

• The Application Type displays the type of the application which is being integrated. This information is used by Visual Guard to determine how to load the assemblies of your application.
• Note: Modify Action Script Language only if you know about the appropriate language used to build the application else the application might not build 
• This option is used if you have changed the type of application after integrating it with Visual Guard.
• To change the Application Type follow the steps below:
• Select the Repository > Application name from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below:

• Click on the Application Type option on the Right Navigation Panel (A), v will be displayed.
• Click v , a dropdown list will appear.
• Select the appropriate application type.
• The selected application type will be stored automatically.

• The Version displays the version of the permissions of the application. This allows you to manage multiple versions of your permissions according to multiple versions of the application. The number of the version is necessary to manage different version of application. The best way to change the version number is to do it by creating a new version.

To modify the Version follow the steps below:

• Select the Repository > Application name from the Left Navigation Panel.
• The application details of the selected application will be displayed as shown below.

• Click on the Version option on the Right Navigation Panel (A).
• Enter the Version. The new Version will be stored automatically.

Note: The new version number should be higher than the older one.

The Anonymous Role displays whether an anonymous role is being used for the application. If your application requires an authentication this field must set to the value “None”.

Note: If multiple roles exist in the list, you have to select an appropriate role that will be used for anonymous session.

To modify the Anonymous Role follow the steps below:

• Select the Repository > Application name from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below:

• Click on the Anonymous Role option on the Right Navigation Panel (A), v will be displayed.
• Click v , a dropdown list will appear as shown below.

• Select the v option if you want to allow an anonymous session for the application or uncheck if do not want an anonymous session.  
• A message will be displayed stating the change in the settings.

• Select “ok”  to continue.
• To use the changes in the application, you need to regenerate the configuration files of the applications. Click here to know about generating Visual Guard configuration files.
• The changed value will be saved and displayed as shown below.

The Default Role displays the role granted by default to each new registered user.

To modify Default Role follow the steps below:

• Select the Application name from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below.

• Click on the Default Role option on the Right Navigation Panel (A), v will be displayed.
• Click v a dropdown list will appear as shown below.

• Select check box option if you want to allow a default role for the application or uncheck if you do not want a default role.
• On checking the check box option, the list below it will be enabled.
• Select the role as default role from the list. The selected role will be saved automatically.

The Membership Access Level indicates the level of access granted in an application to a particular user.

To modify the membership access level, follow the steps below:

• Select the Repository > Application name from the Left Navigation Panel.
• The application details of the selected application will be displayed as shown below.

• Select the Membership Access Level from the Right Navigation Panel (A),”v” will be displayed.
• Click “v” a dropdown list will appear.

• Select any one of the option from the dropdown list.

Visual Guard generates two configuration files for every application which is being integrated with it.

The configuration file contains the information about the repository used by the application.

The files need to be regenerated under following conditions:

• Each time you need to change the Visual Guard repository and connect to your application.
• When you change the authentication mode supported by the repository.
• When you enable or disable the anonymous session.
• When you change the information about the connection to the repository (like server, schema or database name, repository path).
• When you create a new version of the application by using the console and you want to access to this new version from your application.

To regenerate Visual Guard configuration files, follow the steps below.

• Select the Repository > Application name from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below.

• Generate the configuration files using one of the options below:
  • Right-click on the Application name in the Left Navigation Panel and select the Generate Visual Guard Configuration Files menu (A).

OR

• • Select the Generate Visual Guard Configuration Files menu from the Action menu (B).
• A Generate configuration files window will appear as shown below:

• Default values will be displayed in the Generate configuration files. You can view as well as modify the details. Please click here for more details.
• Select the path. Default path will automatically be selected. Click “OK”  to continue.
• A message will be displayed stating the modification of the file.

• Click “OK” to close the notification message.
• You can Cancel the operation. Visual Guard also allows you to test whether the configuration source file has been generated successfully. Click here for more information.

Visual Guard generates two configuration files for every application that is integrated with it.

You can Test whether the configuration source code has been generated appropriately.

To test Visual Guard configuration files, follow the steps below.

• Select the Repository > Application > Generate Visual Guard Configuration Files menu.
• The details of the associated Configuration Files will be displayed as shown below.

• Click “Test” to test the configuration file.
• Login Screen will be displayed as shown below:

• The screen will display a list of all authentication modes selected in Supported Authentication Mode option during Generating Configuration Files.
• Select the appropriate mode. Open an anonymous session option will be displayed only if Is Anonymous Session Supported option is True.
• Login using the valid credentials. You will be prompted to select a role.

• Once you select a role click “OK” , following message will be displayed.

Visual Guard allows you to modify the details of the Configuration File.

To modify the details follow the steps below:

• Select the Repository > Application > Generate Visual Guard Configuration Files menu.
• The details of the associated Configuration Files will be displayed as shown below.

• You can modify the following details using his module.

Visual Guard allows you to view the monitoring and troubleshooting messages from the application of the repository.

Follow the steps below to view the events:

• Select the Repository > Application from the Left Navigation Panel.
• The application detail of the selected application will be displayed as shown below.

• Access the Event Viewer option using one of the options below:
  • Right click on the application name and select the Event Viewer option (A) from the popup menu.

OR

• • Select Event Viewer option from the Action menu (B).
• The Event Log screen will be displayed as shown below.

• You can filter and view the events occurred in the repository. You can also filter the events using various filter options (C).

• As soon as you click on “Find” the result will be displayed as shown below.

• The system allows you to perform following actions upon the event details.
  • Export to PDF
  • Clear log entries
  • Add Event Description
  • Edit Event Description
  • Refresh: This option allows you to refresh the contents, once you click on this option any new event will be appended to existing list.

Visual Guard allows you to add a new event to existing list of events

In order to add a new event follow the steps mentioned below:

• Access the events for the selected Application by clicking on Event Viewer option.
• Click on “Add/Edit Event description…”  (A) at the extreme right of the Event Log screen.

• The Add/Edit Event Description screen will be displayed.

• In order to add a new id and description click on the “Add New Custom Event “ (B) and enter the new id and description.

• Enter the new event id and the description.
• Once you enter the id and the description, “OK” will be enabled (D).
• Click on “OK” to save the event, otherwise click on “Cancel” to cancel saving the event.
• Note*: The event id will be generated automatically even if the Event id is not entered by you.

• The new added Event will be stored and displayed in the event list (E).

• You can remove the event using “Remove” .

Note: You cannot remove the pre-defined events. You can only delete the customized event that are not created by the system.

See Also:

• Export to PDF
• Clear log entries
• Edit Event Description
• View Events

Visual Guard allows you to export the event details to PDF.

Follow the steps mentioned below to export report to PDF.

• Access the events for the selected application by clicking on Event Viewer option.
• To view the of log of events of specific date, select the date and click on “Find” .
• To view all the events, click directly on “Find” .
• Select the event and click on the Export to PDF option (A) from the bottom of the Event Log screen.

• A Generate PDF report window will be displayed.

• Select the PDF options and click on “OK”. You can cancel the operation by clicking on “Cancel” .

See Also: 

• Clear log entries
• Add Event Description
• Edit Event Description
• View Events

Visual Guard allows you to clear the event log

Note: From the next version onwards i.e. (2.8), it will not possible to select “Event older than” for repository type = File

Follow the steps below to clear the log

• Access the events for the selected application by clicking on Event Viewer option.
• Click on “Clear log entries”  (A) at the extreme right of the Event Log screen.

• The Clear log screen will be displayed.

• Using this screen, you can select the criteria for clearing event log. You can select a single value only.
• “Events older than” option allows you to select criteria before which all events will be deleted. You can also clear the complete event log by selecting “All events” option.
• Click on “OK” to accept the selection. You can cancel the operation by clicking on “Cancel” .
• You will be asked for confirmation before clearance.

• Click on “Yes” to continue the clearing the logs or click on “No” to cancel.

See Also:

• Export to PDF
• Add Event Description
• Edit Event Description
• View Events

Visual Guard allows you to edit event descriptions

You can edit the description of the events using the below steps

• Access the events for the selected application by clicking on Event Viewer option.
• Click on the “Add/Edit Event Description”  (A) at the extreme right of the Event Log screen

• The Add/Edit Event Description screen will be displayed.

• You can select an event from the list of events (B) to edit the description.
• As soon as you select the event to be edited, the description of the selected event (C) will be displayed.

• You can edit the selected event’s description using the Description field.

Note :The event id of the pre-defined events will be uneditable. So you will not be able to modify the event ids of the events. You can modify the event ids of the customized events only.

• As soon as you edit the description, “Save” will be enabled (D) as shown below.

• After the description is changed, you can click on “Save” to save it.
• You can undo the changes using “Reset” .
• You can also add a new event using this screen. Click here for more details

See Also: 

• Export to PDF
• Clear log entries
• Add Event Description
• View Events

Application deployment in Visual Guard refers to the process of deploying security configurations, such as roles, permissions, and user profiles, to specific applications or systems within an environment. This deployment ensures that security settings are applied effectively to the target applications, enabling consistent access control and enforcing security policies.

Below are the steps of how we can deploy an application

Step 1: Right click on the application and click on Deploy application.

Step 2: Once the setup shows up click on Next

Step 3: Select the option of either Export data in a deployment configuration file or Deploy in an exisiting repository, Click Next after selection

Step 4: Choose the Overwrite option and Deployment mode from the dropdown list provided, Click Next after selection

Step 5: Click on the Finish button to complete the deployment.

Note: You will be asked to provide a path to where the configuration file should be saved.

• This feature allows to monitor the occurrences of important events for specified time intervals for selected application in user friendly graphical format, follow the steps below:
• Log in to the Repository.
• Click on the Repository Name and click on “+” besides Application
• Click on Monitoring (A) .

See Also:

• Attendance Hours
• Historical Data 
• Real time data

Visual Guard allows you to create new permission for restricting user or allowing them access.

Note: You will be allowed to create the permissions only if you have been assigned the privilege. Refer special roles section for more details on privilege.

Follow the steps below to create a permission:

• Login to the Repository and select the Application name under which the permission(s) is to be created. 

• Access the New Permission using one of the options below:
  • Right click on the Repository > Application > Permissions and select the New Permission menu (A).

OR

• • Right click on the Repository > Application (B) and select the New Permission menu.

OR

• • Select the Repository > Application from the Left Navigation Panel and select New Permission menu from the Action menu (C ).
• The new permission will be created under the Permissions folder as shown below:

• As the new permission is created, it will be in editable mode for renaming (A). You can rename the new permission.
• The renamed permission will be displayed as shown below:

A Permission Set stores the set of rules to access a particular application.

Note: You will only be allowed to create the permission set if you have been assigned the privilege. Refer special roles section for more details on privileges.

Follow the steps below to create a Permission Set:

Login to the Repository and select the Application name under which permission set is to be created.

• Access the New Permission Set using one of the options below:
  • Right click on the Repository > Application> Permission Set from the Left Navigation Panel and select the New Permission Set menu (A) from the popup menu.

OR

• • Right click on the Repository > Application (B) and select the New Permission Set menu.

OR

• • Select the Repository > Application> Permission Set from the Left Navigation Panel and select New Permission Set menu from the Action menu (C ).
• The new permission set will be created under the Permission sets folder as shown below:

• Once the new permission set is created you can rename it (A). For example Special Permission Set.
• The renamed permission set will be displayed as shown below:

See Also: 

• Grant Permission List
• Grant permission Set List

Visual Guard allows you to create new role for restricting user or allowing them access.

Note: You will be allowed to create the permissions only if you have been assigned the privilege. Refer special roles section for more details on privilege

• You can assign a Permission Set directly to a role by drag & and drop
• You can directly revoke a Permission Set by selecting it and pressing the delete key

Follow the steps below to create a role:

• Login to the Repository and select the Application name under which the permission(s) is to be created.

• Access the New Role option using one of the options below:
  • Right click on the Application > Roles and select the New Role menu (A) from the popup menu.

OR

• •  Right click on the Repository > Application (B) and select the New Role menu.

OR

• • Select the Repository> Application> Roles from the Left Navigation Panel and select the New Role menu from the Action menu (C).
• The new role will be created under the Roles folder as shown below:

• As the new role is created, it will be in editable mode for renaming (D). You can rename the new role.
• The renamed role will be displayed as shown below:

See Also: 

• Modify Role
• Removing Application Role
• Rename Role
• Modify Permission Set
• Manage Membership Role

An MFA policy refers to the set of rules and guidelines that dictate how Multi-Factor Authentication (MFA) is implemented within that specific application. This policy determines when and how users are required to provide additional verification, beyond just a password, to authenticate their identity.

Step 1: Click on the Application –> you will see the page with details of the application.

Step 2: On the bottom left corner, you will see the Edit MFA Policy link.

Step 3: Fill in the required details.

• Select the type of method you are opting for the security under preferences information.
  • OTP via email or phone
  • Secure link via email or phone
  • Microsoft Authenticator (TOTP)

• The number of Grace logins (allows users a limited number of logins, or a period of time, to access a system without completing the usual authentication requirements) you would like to provide.

• Provide the setting required under Session scope information
  • Scope: choose where you want the setting to reflect either under the whole Repository or specific Application
  • Duration: You can mention the time till when you want this feature to be active till
• In case you want to allow a user to use the application even if MFA is not enabled click Allow on the other information section.

How to use the Application Attribute functionality

Step 1: Click on the Application and on the right side bottom click on Manage Application Attribute

Step 2: Click on the Add New icon on the right bottom

Step 3: Enter the additional property/information that you want the add and click Ok to save the update

Step 4: Once you enter the property, you can also add the value below and save it.

One application can have multiples identity clients for each you can different options:

• Identity ressources
• Allowed redirect Uris
• Post logout Uris
• Allowed cors origins
• etc..

How to create a new Identity client

Step 1: Begin by opening the VGRepository using an account that has the Master Admin Role.

Step 2: Select the application you wish to configure ‘1‘, click on the option labeled “Configure Identity Client for Application” ‘2‘, click on New Platform to select the type of configuration’ ‘3’ you prefer

Step 3: Click on the Pen icon to view further features and edit the configuration

• Primary Information: Essential data or key details that are fundamental to understanding the application.

• Identity Resources: Components in configuring and enforcing authentication and authorization policies within the Visual Guard system.

• URI Information: Refers to Uniform Resource Identifiers (URIs), which are strings of characters used to identify a resource, typically on the internet.

CORS: Refers to Cross-Origin Resource Sharing (CORS), which is a mechanism that allows resources on a web page to be requested from another domain outside the domain from which the resource originated.

• Grant Types: This refers to the different methods or protocols used for obtaining access tokens or permissions in a system. Common grant types include Authorization Code Grant

• Secret Keys: This is a piece of confidential information, typically a long string of characters, used for cryptographic purposes, such as encrypting and decrypting data, or for authenticating communication between parties.

Note: Make sure to click on Save everytime you make any edits, so that the update is reflected further.

The Name indicates the name of the application that is being integrated.

To modify the Name, follow the steps below:

• Select a Repository > Application from the Left Navigation Panel.
• The application details of the selected application will be displayed as shown below.

• Modify the Name using one of the options below:
  • Right-click on the application name in the Left Navigation Panel and select the Rename menu (A).

OR

• • Select the Rename menu from the Action menu (B).

OR

• • Click on the Name from the Right Navigation Panel (C).

OR

• • Press F2 after selecting the application name.
• Enter the new name. The name should be unique.
• Once you update the name, the updated details will be displayed as shown below:

Visual Guard allows you to remove the applications that have been integrated with it.

Note:

• • Once deleted from the repository you cannot use the application. You will have to delete all reference to Visual Guard from the application.
  • In case you remove an application it will no longer be available.

Follow the steps below to delete the application integrated with the Visual Guard.

• Select the Repository > Application from the Left Navigation Panel.
• The application detail of the selected application will be displayed as shown below.

• Delete the integrated application using one of the options below:
  • Right-click on the Application from the Left Navigation and select the Remove option from the menu

OR

• • Select the Remove option from the Action menu.
• You will be asked for confirmation before the application is removed from the repository.

• Enter the confirmation code displayed on the confirmation screen. Click “OK” to delete the application.
• You can Cancel the operation by clicking “Cancel”  .
• The application will be removed from the list of integrated application.

Visual Guard allows you to check security actions for the applications integrated with it. Using this option you can check whether created actions are valid or not.

To check security actions follow the steps below:

• Select the Repository > Application from the Left Navigation Panel.
• The details of the selected application will be displayed as shown below.

• Access the Check security actions menu using any of the options below:
  • Right click on the application name and select the Check security actions menu (A) from the popup menu.

OR

• • Select the application name from the Left Navigation Panel and select the Check security actions menu from the Action menu (B).
• A message will be displayed stating whether actions created for the application are valid or not.
• If the actions are valid, following screen will be displayed.

• If the actions are invalid an appropriate error message will be displayed in the Log view as shown below.

Visual guard allows you to duplicate a Role within your system that mirrors an existing shared role, duplicating all similar permissions and responsibilities.

Note: This feature is exclusively available in VG 2024 and later versions.

Below are the steps to follow to duplicate an existing shared role.

Step 1: Open your application –> Go to Roles –> select Role –> select Duplicate Role

Step 2: Enter the Role Name, check the selected items, if they all apply to your requirement then click on Ok, if not then make the necessary amendments.

You can choose to grant the below;

• Grant to User : You have the option to choose if this duplicated role should be granted to the user with or without identitcal users of the current role
• Grant to Group: You have the option to choose if this duplicated role should be granted to the group with or without identitcal groups of the current role
• Identical PersmissionSets: You can assign the PermissionSets to the role, these permission sets will be configured similarly across different roles or users, providing consistent access control within the system.
• Identical Permissions: You can assign the Permission to the role, these permissions may be configured similarly across different roles or users, providing consistent access control within the system.
• Identical Profile: Once you check this then the role profile details will be duplicated as well

Visual Guard allows you to create new role for restricting user or allowing them access.

Note: You will be allowed to create the permissions only if you have been assigned the privilege. Refer special roles section for more details on privilege

• • You can assign a Permission Set directly to a role by drag & and drop
  • You can directly revoke a Permission Set by selecting it and pressing the delete key

Follow the steps below to create a role:

• Login to the Repository and select the Application name under which the permission(s) is to be created.

• Access the New Role option using one of the options below:
  • Right click on the Application > Roles and select the New Role menu (A) from the popup menu.

OR

• • Right click on the Repository > Application (B) and select the New Role menu.

OR

• • Select the Repository> Application> Roles from the Left Navigation Panel and select the New Role menu from the Action menu (C).
• The new role will be created under the Roles folder as shown below:

• As the new role is created, it will be in editable mode for renaming (D). You can rename the new role.
• The renamed role will be displayed as shown below:

 See Also:

• Modify Role
• Removing Application Role
• Rename Role
• Modify Permission Set
• Manage Membership Role

Visual Guard allows you to edit the permission assigned to the role.

To edit the permission follow the steps below:

Note: Besides using the below method to edit the Permission you can use the following shortcut methods to grant, revoke a permission

• • By double clicking on the permission you can Grant/ Revoke a permission.
  • You can assign a permission directly to a role by drag & and drop
  • You can directly revoke a permission by selecting it and pressing the delete key
  • You can also remove a permission by right clicking on the permission name and selecting Remove menu from the popup menu
• Select the Repository > Application > Roles > Role name from the Left Navigation Panel.
• The details of the selected role will be displayed.

• Access the Edit Permission List menu using any of the following options:
  • Right click on the role name and select the Edit Permission List menu (A) from the popup menu.

OR

• • Select the role name from the Left Navigation Panel and select the Edit Permission List menu from the Action menu (B).

OR

• • Select the Permission from the Right Navigation Panel (C). Click “…” provided beside the Grant Permissions.
• A Grant permission screen will be displayed.

• Select the permission from the List of permission (D) that need to be granted. By default the first permission will be selected.
• A Role can be granted a single permission only. Click “-> Grant” .
• The granted permission will be displayed in Current granted permission (E).

• Once permission is added to the Current granted permission, “<- Revoke” will be enabled.
• You can remove the permission by selecting the permission from the Current granted permission (E).
• After granting the permission , click “OK” to save the changes or click “Cancel” to cancel the changes.

See Also:

• Creating Application Role
• Modify Role
• Removing Application Role
• Rename Role
• Manage Membership Role

Visual Guard allows you to view the Role Details and manage the assigned groups and users.

Follow the steps below to view Role details:

• Login to the Repository and select the application of which the Roles are to be viewed.
• Click on “+” icon of Roles option available in Left Panel. List of Roles created under the selected application will be visible (A).

• Select the Role from left panel which is to be modified.
• The details of Role will be displayed in right panel (B) as shown below.

• Following options will be available to you :
  • View Role Details
  • Assign & Revoke Granted Users
  • View Granted Groups

See Also:

• Creating Application Role
• Removing Application Role
• Rename Role
• Modify permission set
• Manage Membership Role

Visual Guard allows you to create roles and manage users and groups assigned to the role

To view role related details follow the steps below:

• Select the Repository > Application > Roles > Role Name from the Left Navigation Panel.
• Role Details will be displayed. Select the Role Tab (A).

• You can view following Role details using this module:

See Also:

• View & Revoke Granted Users
• View Ganted Groups

Visual Guard allows you to create roles and manage users and groups assigned to the role

To view and edit the list of users that have been assigned the selected role follow the steps below:

Note:

• • You can also modify user details using Role Tab

• Select the Repository > Application name > Roles > Role name from the Left Navigation Panel.
• The details of the selected role will be displayed.
• The details will be displayed in Role tab (A) as shown below.

• Select the Granted Users Tab (B).

• The list of all users to whom the role has been currently assigned will be displayed.

Note :

• • Using above screen, you can only view the list of the users assigned to the Role
  • You can click on the name of the user to Modify the User Details. You will not be able to Modify the “Roles” of the user from this “Edit User Details” Screen.
• The list of Users is displayed in a form of a Grid.
• Now, Select User. Click here to know more about Selecting User (missing link).
• The list of Users is displayed in a form of a Grid. You can perform following actions on the user: (missing link)
  • Grant role to users
  • Revoke role from users

GRANT ROLE TO USERS

• When you select option “Grant role to users” you are provided with a screen to select users to whom the role is to be assigned.

• Once the users are successfully assigned to the Group, below message will appear

REVOKE ROLE FROM USERS

As soon as the user is selected, “revoke role from users” will be activated.

Note: Using the above screen, you can only revoke the roles assigned to the user. The user can be assigned the roles using User module.

As soon as you click on “revoke role from users” , you will be asked for the confirmation.

• Click “YES” to save the users or click “No” to discard the action.
• The assignment between the Role and the selected users will be removed.

See Also: (missing link)

• View Role Details
• View Granted Groups

Visual Guard allows you to create roles and manage users and groups assigned to the role

To view the list of groups that have been assigned to the selected role follow the steps below:

• Select the Repository > Application>Roles> Role name from the Left Navigation Panel.
• The details of the selected role will be displayed.
• The details will be displayed in Role tab (A) as shown below.

• Select the Granted Groups Tab (B).

• The list of all groups that have been assigned the role will be displayed.

• You can only view the assigned groups.
• You can modify the groups using groups option provided in the left navigation panel.

See Also:

• View Role Details
• View & Revoke Granted Users

Visual Guard allows you to edit the permission set assigned to the role.

To edit the permission set follow the steps below:

Note: Besides using the below method to edit the Permission Set you can use the following shortcut methods to grant, revoke a permission set

• • By double clicking on the permission set you can Grant/ Revoke a permission set.
  • You can assign a permission set directly to a role by drag & and drop
  • You can directly revoke a permission set by selecting it and pressing the delete key
  • You can also remove a permission set by right clicking on the permission set name and selecting Remove menu from the popup menu
• Select the Repository > Application > Roles > Role name from the Left Navigation Panel.
• The details of the selected role will be displayed.

• Access the Edit Permission Sets menu using any of the following options:
  • Right click on the role name and select the Edit Permission Sets menu (A) from the popup menu.

OR

• • Select the role name from the Left Navigation Panel and select the Edit Permission Sets menu from the Action menu (B).

OR

• • Select the Permission Set from the Right Navigation Panel (C). Click “…” provided beside the Permission Set.
• A Grant permission sets screen will be displayed.

• Select the permission set from the List of permission sets (D) that need to be granted. By default the first permission set will be selected.
• A Role can be granted a single permission set only. Click “-> Grant” .
• The granted permission set will be displayed in Current granted permission sets (E).

• Once permission set is added to the Current granted permission sets, “<- revoke” will be enabled.
• You can remove the permission set by selecting the permission set from the Current granted permission sets (E).
• After granting the permission sets, click “OK” to save the changes or click “Cancel” to cancel the changes.

See Also: 

• Modify Role
• creating new roles
• Removing Application Role
• Rename Role
• Manage Membership Role

Visual Guard allows you to rename the roles.

To rename the role, follow the steps below:

• Select the Repository > Application name > Roles > Role name from the Left Navigation Panel.
• The detail of the selected role will be displayed.

• Access the Rename menu using any of the following options:
  • Right click on the role name and select the Rename menu (A) from the popup menu.

OR

• • Select the role name from the Left Navigation Panel and select the Rename menu from the Action menu (B).

OR

• • Select the role name from the Right Navigation Panel (C).
• Enter the role name. The role name should be unique.
• Once you update the name, the updated details will be displayed as shown below.

See Also: 

• Creating Application Role
• Modify Role
• Removing Application Role
• Modify Permission set
• Manage Membership Role