Versions Compared
Key
- This line was added.
- This line was removed.
- Formatting was changed.
Management Server
Axidian PrivilegeIndeed Identity PAM Core
This is the central component that manages the logic of Axidian Privilege Indeed Identity PAM operation.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- web application — core
Tasks:
- Managing users, privileged accounts, access, passwords, etc.
Indeed Identity IdP
User and Component Identification Center.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → web server → Nginx Web Server
Consists of:
- web application — idp
Tasks:
- User authentication management, 2fa issuance and verification, Axidian Privilege component Indeed Identity PAM component authentication
Indeed Identity PAM Management Console
An administrative interface for management of Axidian PrivilegeIndeed Identity PAM.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- web application — mc
Tasks:
- The task list is available in Administration section.
Indeed Identity PAM User Console
User interface for accessing protected Axidian Privilege objectsIndeed Identity PAM objects.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- web application — uc
Tasks:
- The task list is available in User's Manual section.
Indeed Identity Log Server
This is a uniform event log that collects and stores the Axidian Privilege eventsIndeed Identity PAM events.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- web application — ls
Tasks:
- Collecting, storing and issuing events.
Indeed Identity PAM EventLog
An add-on for Axidian Privilege Log Indeed Identity PAM Log Server.
Environment:
- Windows Server 2016 – 2022
Consists of:
- Files and Libraries for Log Server
Task:
- Implements event logging in Windows Event Log.
Access Server
Axidian PrivilegeIndeed Identity PAM Gateway
A set of components implementing jump server functions, session auditing tools and protection mechanisms.
Environment:
- Windows Server 2016 – 2022
Consists of:
- Windows desktop application — ProxyApp.exe
- File System Driver — Pam.FsFilter
- Windows service for interacting with a file system filter — Pam.Service
- Modified SSH Client — Putty.exe
- Extension for mstsc.exe
- A set of utilities and libraries — FFmpeg
- Process Control Libraries
Tasks:
- Providing access to target resource via the RDP/SSH/Telnet protocols and others in RemoteApp mode
- Recording videos and screenshots, text interception and interception of transmitted files.
- Processing and saving session artifacts.
- Checking the status of client components.
- Process startup control, file system access control.
Indeed Identity PAM SSH Proxy
Proxy server for SSH sessions.
Environment:
- Linux → Docker
Consists of:
- application — Pam.SshProxy.Service (Linux)
The component tasks are:
- Providing access via SSH/SCP/SFTP protocols
- Providing port forwarding with the target resources
- Interception of text and transmitted files
- Processing and saving session artifacts.
Indeed Identity PAM RDP Proxy
Proxy server for RDP sessions.
Environment:
- Linux → Docker
Consists of:
- application — Pam.RdpProxy.Service (Linux)
The component tasks are:
- Providing access via RDP protocols
- Interception of text, video, screenshots and transmitted files
- Processing and saving session artifacts
IndeedID ESSO Agent,
Axidian PrivilegeIndeedID Admin Pack
A set of components for implementing SSO access.
Environment:
- Windows Server 2016 – 2022
Consists of:
- A set of applications, services, and tools for interacting with authentication forms and Axidian Privilege componentsIndeed Identity PAM components
- Extensions for Internet Explorer, Google Chrome, Microsoft Edge browsers
Tasks:
- Interception and autofill of authentication forms for web-based applications and Windows desktop applications
Windows Resources
Axidian PrivilegeIndeed Identity PAM Agent
The component is intended to capture text logs during RDP session.
Environment:
- Windows Server 2016 – 2022/Windows XP SP3 X64 – Windows 11
Consists of:
- Windows application — Pam.Proxy.WindowsAgent.exe
Tasks:
- Keeping track of the names of running processes, active windows and keyboard input
- Sending heartbeat messages to Axidian Privilege Gateway Indeed Identity PAM Gateway to register its activity
| Note | ||
|---|---|---|
| ||
The Axidian Privilege Indeed Identity PAM Agent component is optional, as Axidian Privilege Indeed Identity PAM is a completely agentless solution. You can disable text logs in RDP sessions to work without Axidian Privilege AgentIndeed Identity PAM Agent. |
Linux Resources
PAMSU Component
A component for executing commands with root privilege similar to the sudo command. The difference is that authentication will be requested from the Axidian Privilege userIndeed Identity PAM user, not from the privileged account on behalf of which the session was opened on the resource.
Environment:
- Linux
Consists of:
- .deb or .rpm packages
Tasks:
- Running elevated commands as a PAM user
| Note | ||
|---|---|---|
| ||
The PAMSU component is optional, as Axidian Privilege Indeed Identity PAM is a completely agentless solution. You can disable pamsu feature in SSH sessions to work without PAMSU. |
User's Workplace
Axidian PrivilegeIndeed Identity PAM Desktop Console
Additional tool for connecting to target resources via Axidian PrivilegeIndeed Identity PAM.
Consists of:
- Modified mRemoteNG utility
Tasks:
- The task list is available in User's Manual section.
| Backtotop | ||||
|---|---|---|---|---|
|
| Divbox | ||||
|---|---|---|---|---|
| ||||
|