Page History

Description

All PAM Axidian Privilege components are installed on two servers. Recommended for review and testing.

Components

Management Server / Access

Server (RDP/

SSH/SCP/SFTP)

• Indeed Identity PAM Axidian Privilege Core
• Indeed Identity Axidian Privilege IdP
• Indeed Identity PAM Axidian Privilege Management Console
• Indeed Identity PAM Axidian Privilege User Console
• Indeed Identity Axidian Privilege Log Server
• Indeed Identity PAM EventLog
• IndeedID Axidian Privilege SSH Proxy
• IndeedID Axidian Privilege RDP Proxy

Access

Server (

RDP/

RemoteApp)

• Indeed Identity PAM Axidian Privilege Gateway
• Indeed Identity Axidian Privilege ESSO Admin Pack
• Indeed Axidian Privilege ESSO Agent

Work

Scenarios

User

Scenario

1. Connection to the user's self service via a browser or Indeed Identity PAM Axidian Privilege Desktop Console. Domain authentication and second factor authentication. Checking the user in the IdP database. Getting a list of resources from the Core database. Obtaining an RDP file to connect to a resource.
2. Connection to Access server (RDP/RemoteApp) using an RDP file, Indeed Identity PAM Axidian Privilege Desktop Console or connection to Access server (RDP/SSH/SCP/SFTP) using a separate RDP file or SSH client.
3. Domain authentication and second factor authentication. Checking the user of the IdP database. Checking the permission to access the Core database. Retrieving service account credentials from the DBMS to work with media storage. Retrieving privileged account credentials from the DBMS for connecting to a resource.
4. Connecting to a resource.
5. Saving videos and screenshots in the media storage. Saving a text log to the Core database.

Administrator Scenario

1. Connection to the administrator's self service. Domain authentication and second factor authentication. Checking the user in the IdP database.
2. Getting, adding and editing system objects. Performing service operations.