Server Services
The following table describes server services installed by the File Access Manager Server Installer and their relationship to File Access Manager capabilities and main processes.
|
Service Name |
Description |
Capabilities |
|
Event Manager |
Responsible for pulling activities from RabbitMQ, enriching the activity records with additional useful information about the users and the business resources being accessed, evaluating alert and discard rules, and saving activities to Elasticsearch. |
Activity Monitoring Real-time Alerts Threshold Based Alerts |
|
Agent Configuration Manager |
Communicates with the Activity Monitors, Permission Collectors, and Data Classification Collectors to receive health checks and provide configurations. It is also the entry point for the installation process of Activity Monitors and Collectors. |
Activity Monitoring Permissions Collection Data Classification |
|
Activity Analytics |
Performs the Threshold Alerts calculations in near real-time and sends the alerts when a threshold is met. |
Threshold Based Alerts |
|
Central Permissions Collector |
When installed in a simple architecture deployment, it connects to the applications and collects resources and permissions data. When deployed in a distributed architecture, it sends resources to the collector and aggregates the permissions data received from collectors through the message broker. |
Crawling Permissions Collection |
|
Central Data Classification |
When installed in a simple architecture deployment, it connects to the applications and classifies sensitive business resources based on the defined data classification policy. When deployed in a distributed architecture, it sends classification data to the collector and aggregates the classification data received from collectors through the message broker. |
Data Classification |
|
Reporting |
Generates all reports. |
|
|
Scheduled Task Handler |
Schedules and dispatches scheduled tasks when they are due, and runs all maintenance tasks. |
Schedule Tasks DB Cleanup task Events Deletion task Events Re-Indexing task Application Deletion task Periodic Elasticsearch & RabbitMQ health checks |
|
User Interface |
Responsible for communication with the File Access Manager administrative client. |
|
|
Business Website |
The website service running the File Access Manager web interface. |
|
|
API |
RESTful API service. This service provides a platform neutral schema and extension model for representing users, groups and other resource types in JSON format. |
|
|
Workflow |
Access certification campaign (“Campaign”) creation and management of review processes. |
Access Certification Campaigns Access Requests Business Asset Compliance |
|
Collector Synchronizer |
Performs Identity Collection and the Access Fulfillment tasks. |
Identity Collection Access Fulfillment |
|
Crowd Analyzer |
Creates and manages data owners’ election goals. |
Data Owners Discovery |
|
Elasticsearch |
This full text indexing database retains all data on activities collected by the Event Manager. |
Activity Monitoring Threshold Based Alerts |
|
RabbitMQ |
This service is a secure message broker for communication between the Central Permissions Collector and Central Data Classification services, to/from the Permissions, Data Classification Collectors as well as Activity Monitors and Event Managers. |
Permissions Collection Data Classification Activity Monitoring |