Skip to main content

Prepare for SessionGuardian Desktop deployment

Before deploying SessionGuardian Desktop, ensure your network and security settings allow the necessary connections and software components to function properly.

Network requirements

SessionGuardian Desktop runs as a background service when users log in to Windows and requires a continuous connection to the SessionGuardian Server, whether hosted by SecureAuth or by your organization.

  • Allowlist the following URL: https://<instance>.sessionguardian.com/

    • <instance> is your organization's SessionGuardian tenant name, provided during onboarding.

  • Allowlist the required IP addresses. These are provided during onboarding.

  • Allow traffic over port 443 for encrypted connections.

Important

If your network uses a web proxy that requires authentication, contact your SecureAuth Account Manager or Support for details on enabling SessionGuardian through an authenticated proxy.

Allowlist for SessionGuardian components

To ensure proper operation, allow SessionGuardian components by executable name or by the certificate signer (SecureReview, Inc.).

Component

Executable name

SessionGuardian Desktop Service

SGE.IVA.BAService.exe

SessionGuardian Desktop Client

SGE.IVA.AppClient.exe

SessionGuardian Auto-update

SGE.IVA.AutoUpdateService.exe