Safetica utilizes user-based licensing to protect users who work with data. Learn what is a "user account", how are add-ons licensed, what happens when a new user appears or when there are more users than licenses.
Many industries are shifting from using company devices to hybrid environments, so the user (identity) is becoming the central point. Therefore, Safetica utilizes user-based licensing model in which the customers themselves decide which users they want to protect. These users are licensed, and the customer only pays for them.
In this article, you will learn:
- How “a user account” is defined in unified Safetica
- How to add new users into Safetica
- What happens when a new user appears
- How are add-ons licensed
- What happens when there are more users than licenses
How “a user account” is defined in unified Safetica
Safetica detects active accounts – i.e. local accounts that performed an action on a device with installed Safetica Client or accounts that were synced from Active Directory or Azure Active Directory (if Safetica Cloud protection is enabled).
Every detected user account is automatically assigned a license, added into Safetica, displayed in the user tree, and protected (i.e. Safetica policies apply to them).
Safetica considers the following as a user account:
- A local user account found active on a device with Safetica Client that is not in Active Directory nor paired with an Azure Active Directory cloud account.
- A user account synchronized from Active Directory that is not paired with an Azure Active Directory cloud account.
- A user account found active in Azure Active Directory by Safetica Cloud Protection that is not paired with an Active Directory account.
- A user account synchronized from Active Directory with a paired Azure Active Directory cloud account (Safetica is able to pair AD and AAD accounts).
A user account that appears on multiple devices still counts as one user account.
Example: A user that works on several devices under one account is considered one user account in Safetica and consumes one license. A user that works on one device under a local account and under an unpaired Active Directory account is considered as two user accounts in Safetica and consumes two licenses.
System accounts, which are marked as system, are not licensed and protected by default.
How to add new users into Safetica?
There are 2 ways new users can be imported into Safetica:
- The user account uses a device with installed Safetica for the first time.
- The user account is synced from Active Directory or Azure Active Directory.
What happens when a new user appears?
When a new user account appears, it is protected by Safetica by default.
When a new user appears:
- A new user account is assigned a license and added into the Users list in Safetica console.
- If the user comes from Active Directory, they will appear in the appropriate Active Directory organizational unit.
- If the user is detected after using a device with installed Safetica Client, they will be assigned into the Unknown team. Policies set up for the Unknown team will start applying to them.
How are add-ons licensed?
Add-ons (such as Safetica UEBA) are valid for all your purchased Safetica licenses.
What happens when there are more users than licenses?
If the number of licenses is exceeded, you will see a warning in Safetica console, but the protection will still work. You can find more details about your license and the number of protected users in Settings > Subscription and license management. A list of all protected users is available in the Users section on the Users tab.
Read next:
Users: How to remove and assign licenses
Subscription and license management