Description
PAM components are installed on different servers. This type of installation allows you to decouple the core of the system from the components that provide access. Recommended for implementation and operation in a production environment.
Components
Management server
- Indeed Identity PAM Core
- Indeed Identity IdP
- Indeed Identity PAM Management Console
- Indeed Identity PAM User Console
- Indeed Identity Log Server
- Indeed Identity PAM EventLog
Access server
- Indeed Identity PAM Gateway
- Indeed Identity PAM SSH Proxy
- IndeedID ESSO Admin Pack
- IndeedID ESSO Agent
Work scenarios
User scenario
- Connection to the user's self service via a browser or Indeed Identity PAM Desktop Console. Domain authentication and second factor authentication. Checking the user in the IdP database. Getting a list of resources from the Core database. Obtaining an RDP file to connect to a resource.
- Connection to Indeed Identity PAM server using an RDP file, Indeed Identity PAM Desktop Console or using a separate SSH client.
- Domain authentication and second factor authentication. Checking the user of the IdP database. Checking the permission to access the Core database. Retrieving service account credentials from the DBMS to work with media storage. Retrieving privileged account credentials from the DBMS for connecting to a resource.
- Connecting to a resource.
- Saving videos and screenshots in the media storage. Saving a text log to the Core database.
Administration scenario
- Connection to the administrator's self service. Domain authentication and second factor authentication. Checking the user in the IdP database.
- Getting, adding and editing system objects. Performing service operations.
