Indeed Identity PAM Gateway
Go to C:\Program Files\Indeed Identity\Indeed PAM\Gateway\ProxyApp folder and edit appsettings.json file:
Core
Url - PAM Core URL address
"Core": { "Url": "https://pam.domain.local/pam/core"
Auth
IdpUrl - IdP URL address
GatewaySecret - Secret for PAM Gateway component authentication
- Go to Indeed.PAM\Misc\ConsoleApp folder
- Run Command Prompt (CMD)
- Execute Pam.ConsoleApp.exe generate-secret
- Use secret and hash values
"Auth": { "IdpUrl": "https://pam.domain.local/pam/idp", "IdpRequiresHttps": true, "GatewaySecret": "70OQ7d6B7pGOpVNtctA7EAUIvD4lVVtWr73ECeXqZh91fZPYFDJ2Fhmh4xB3upZHpTxXHPFMI/nU2BcYaHNrSw==" },
Session
- AgentConnectionTimeout - waiting time for a response from PAM Agent until the session is aborted
AgentHeartbeatTimeout - interval for checking PAM Agent operation
"Session": { "AgentConnectionTimeout": "00:01:00", "AgentHeartbeatTimeout": "00:00:20" },
Media
VideoTempPath - folder for temporary video files, default is C:\ProgramData\Indeed Identity\Indeed Pam\VideoTemp
"Media": { "VideoTempPath": "" },
FileCopy
Conditions for copying files from a mapped drive to shadow storage:
- MaxPercentToIgnore - skip the file if no more than the specified percentage of the file size is read
- EnoughPercentToSave - save the file if read at least the specified percentage of the file size
MinBytesToSave- save the file if the specified number of bytes are read
"FileCopy": { "MaxPercentToIgnore": 1, "EnoughPercentToSave": 50, "MinBytesToSave": 1048576 },
Rdp
UseMultimon - support for multiple monitors in an RDP session
"Rdp": { "UseMultimon": true }
