Page History

Indeed PAM Core

This is the central component that manages the logic of Indeed PAM operation. It is a web application that operates on Internet Information Services (IIS) web server. Indeed PAM Core uses Microsoft SQL Server as a data storage. All data is stored in encrypted form using the AES256 algorithm.

The component tasks are:

Consists of:

• ASP.NET Core applicatoin – Core

Tasks:

• Providing centralized management of system users.
• Managing
• To provide for centralized management of the users.
• To manage resource access credentials.
• To provide Providing flexible settings via settings through access policies.

• To store privileged account passwords.

• Storing privileged accounts data.
• Performing scheduled tasks.

Indeed PAM Gateway

The component provides for A set of components that are responsible for providing access to target resources and , logging of user sessions. This is a combination of Windows application, application published in RDS (Remote Desktop Services) collection and modified version of PuTTy client.

The component tasks are:

, saving logs to file storage, and processing file read operations on disks.

Consists of:

• Windows desktop application – ProxyApp.exe
• File System Driver – Pam.FsFilter
• Windows service for interacting with a file system filter – Pam.Service
• Modified SSH Client – Putty.exe
• mstsc extension
• A set of utilities and libraries - FFmpeg

Tasks:

• Providing access to target resource via the RDP/SSH protocols and client application protocols
• Recording video and photo logs for RDP/SSH protocols and client application protocols
• Recording text logs for SSH sessions
• Monitoring and intercepting files transferred to the resource
• Saving all session logs to file storage
• Checking the status of Indeed PAM client components
• To provide for access to target resource.
• Video and photo logging of RDP\SSH\Web sessions\Client app sessions.
• Text logging of SSH sessions.
• Checking status of client components.

Indeed PAM SSH Proxy

The component is responsible for providing access to *nix target resources via SSH and logging user sessions. It is a Windows service that accepts incoming SSH connections to the TCP port specified in the settings..

Consists of:

• Windows service – Pam.SshProxy.Service

The component tasks are:

• Provides Providing access to the target *nix resource without using RDS and using any SSH clients.
• Recording Records text logs for SSH sessions.

Indeed-Id ESSO Agent

, Indeed-Id Admin Pack

A set of components that intercepts application authentication forms The component intercepts application registration windows and fills them in with username and password. It represents the Windows application and browser extension.

The component tasks areConsists of:

• Autofill of registration windows in web applications and Windows applications.

Indeed-Id Admin Pack

The component provides for access to Indeed-Id SSO Agent. It is a Windows application.

The component tasks are:

• A set of applications, services, and tools for interacting with authentication forms and Indeed PAM components
• Extensions for Internet Explorer and Google Chrome browsers

Task:

• Interception and autofill of authentication forms for web-based applications and Windows desktop applicationsImplementation of access interface for Indeed-Id SSO Agent.

Indeed PAM IdP

This is identification center, it provides Identity Center, responsible for user authentication.   It is a web application that operates running on the Internet Information Services (IIS) web server. Indeed PAM IdP uses Microsoft SQL Server as a data storage. All data is stored in encrypted form using the AES256 algorithm.

The component tasks are:

Consists of:

• ASP.NET Core application – api

Tasks:

• Training and verification of authenticators
• Providing
• To provide for authenticator enrollment and verification.
• To provide user authentication data to other system components.

Indeed PAM Management Console

Indeed PAM Management Console is a graphical shell for Indeed PAM Core. It provides an interface to configurefor configuring, control managing and audit auditing the system and is a graphical interface for Indeed PAM Core. It is a web application that operates on Internet Information Services (IIS) web server.

Consists of:

• AngularJS application – mc

TasksThe component tasks are:

• The task list is identical to Administration section.

Indeed PAM User Console

Indeed PAM User Console provides for interface to access the target resources. It is a web application that operates on Internet Information Services (IIS) web server.

Consists of:

• AngularJS application – uc

TasksThe component tasks are:

• Display Displaying of available accounts and resources accessible for the end user.

• To provide for starting Starting a privileged session.

Indeed Log Server

This is a uniform event log that collects and stores the Indeed PAM events. It is a web application that operates on Internet Information Services (IIS) web server.

The component tasks are:

Consists of:

• AngularJS application – ls

Tasks:

• Collecting and storing of events
• Providing quick event query results
• To provide for event collection and storage.
• To provide for a fast event query results. 

Indeed PAM EventLog

The component is required An add-on for Indeed Log Server to work., designed to record Indeed PAM events to the Windows event log.

TaskThe component tasks are:

• Allows Indeed Log Server to communicate with Windows Log.

Indeed PAM Agent

The component is intended to track user activity at the target resource during RDP session. It is a Windows application.

The component tasks are:

Consists of:

• Windows application – Pam.Proxy.WindowsAgent.exe

Tasks:

• Keeping track of the names of running processes
• Keeping track of the names of active windows
• Logging keyboard input
• Sending
• To track processes launched.
• To track active windows.
• To log keyboard input data.
• To send heartbeat messages to Indeed PAM Gateway in order to confirm register its own activity.activity