Skip to main content

28 docs tagged with "security"

View all tags

Access Preferences

Access Preferences refers to the restrictions that secure the way all users access the system. A user must be an admin user or have the Manage Access Preferences (MANAGEACCESSPREFERENCES) to edit these preferences.

API Consumers

API consumers are an abstraction similar to an OAuth client. The primary purpose of an API consumer is to generate API keys, which are used to authenticate API requests by including them in an apiKey header.

Audit Trail

The audit trail capability tracks all activities that have been performed in the Mambu Core Banking system via the UI or API v1 and v2. Audit records are grouped per tenant. You can search and filter through stored events using a simple API or periodically pull batches of events into your own log management software for further analysis.

Audit Trail V2

The complete Audit Trail V2 API documentation can be found here: Audit Trail V2

Data Lake Integration Guide

This guide will help you integrate your Mambu data lake with your AWS environment. For more information on the Mambu data lake, see the Data Lake Overview.

Internal Controls

Internal controls are settings related to managing risk that you can configure for clients, groups, and loans.

Internal Controls for Loans

In the Internal Controls section of the Creating a new loan product form, you can set up automatic internal controls for loans, such as the dormancy period or the number of days before locking accounts in arrears.

Locking and Unlocking Loans

Mambu allows you to lock and unlock loan accounts to better manage situations where you need to stop applying interest, fees, or penalties to them.

Permissions

A permission is the authorization given to users that enables them to view a type of information or to perform an action in Mambu. You can either assign individual permissions to users or you can group permissions by creating a role and then assigning that role to a user.

Roles

A role is a way to to group permissions and to control other forms of access within Mambu.

Security

Security is a foundational pillar of Mambu Insights. The platform is designed with robust controls to ensure your data is protected and access is managed securely.

Sending Secure Information

Sensitive information, including financial details, usernames, passwords, and personally identifiable information of third parties, needs to be protected. At Mambu, we use the FlowCrypt browser extension as our preferred method for encrypting email communications. If your organization does not use Gmail, please follow the instructions below to set up a compatible GPG solution.

Set up federated authentication with OneLogin

Federated Authentication (FA) enables organizations to manage the identities and the credentials of the users in a centralized way using identity providers (IdPs) such as OneLogin.

Token Management

A card token is a string of symbols that replaces a payment card number and is used to uniquely identify a payment card.

Understanding Users, Roles, and Permissions

A user is anyone who accesses and uses Mambu via the UI or the API. Users are assigned permissions which determine the information they can access and the tasks they can perform. Each permission has a name and covers one action or a small subset of action - for example VIEWCLIENTDETAILS. Permissions can be assigned to users either directly or through a role. A role is a way to group permissions and to control other forms of access within Mambu.

User Management and Audit Trail

This article discusses how to manage users and use the audit trail feature in Mambu Payment Gateway once you already have your first user set up.