The console displays permissions to access to resources. For each permission, a resource, connection type, connection address and privileged account are indicated. Sorting is available for each column. As you enter characters in the search box, matches will be displayed across all columns.

Access to resources is performed using .rdp files. To download the file, you must click Connect to the right of the required permission or click Connect to the access gateway. The second connection option is convenient with a large number of permissions, since it allows you to select the desired resource after authentication.

The permission details show the validity period, access schedule, and permission ID (the sequential number of the permission in the Permissions section in the Management console).

Direct connection to the resource

  • Click Connect to the right of the desired permission
  • Run the RDP file to access the resource
  • Authenticate and follow the steps to set up your connection

Connection to the access gateway

  • Click Connect to access gateway
  • Run the RDP file to connect to the gateway.
  • Authenticate and follow the steps to set up your connection.

Connection to SSH Proxy

You can use any SSH client to connect to the SSH Proxy gateway.

  • Start SSH client
  • Enter the SSH Proxy address and connect
  • Authenticate
  • Select a resource to connect

Connect via SSH directly

Each SSH connection has a Copy button in the user's console. After clicking, you will copy the complete connection string and can use it in the SSH client.

Command template for connecting directly to a resource via an ssh client:

ssh [user-name]#[resource]#[account-name]#[reason]@[proxy-address]
  • user-name - username
  • resource - IP address/DNS name of the target resource
  • account-name - name of the privileged account
  • reason - text of the reason for the connection
  • proxy-address - IP address/DNS SSH Proxy

If the reason contains spaces, then it should be quoted. If any of the parameters are not specified, then SSH Proxy will additionally request the necessary information.

After executing the command, SSH Proxy will ask for the user's password and TOTP.

Example:

ssh james.miller#ubuntu#webmaster#"system configuration"@pam

End of session

To end the session, end the user's session on the resource, or right-click on resource in the Connections pane or on connection tab and select Disconnect menu item, or close the Remote Desktop window.

  • No labels