MySQL¶
This chapter contains an example of a basic Wheel Fudo PAM configuration, to monitor SQL queries to a remote MySQL database server.
In this scenario, the user connects to a MySQL database using individual login and password. When establishing the connection with the remote server, Wheel Fudo PAM substitutes the login and the password with the previously defined values: root/password (authorization modes are described in the User authorization modes section).
Prerequisites
The following description assumes that the system has been already initiated. For more information on the initiation procedure refer to the System initiation topic.
Configuration
Adding a server
- Select > .
- Click .
- Provide essential configuration parameters:
| Parameter | Value |
|---|---|
| Name | mysql_test |
| Blocked |  |
| Protocol | MySQL |
| Anonymous | |
| Description | MySQL server |
| Permissions | |
| Granted users | |
| Destination host | |
| Address | 10.0.35.52 |
| Port | 3306 |
| Proxy | |
| Mode | proxy |
| Local address | 10.0.40.50 |
| Port | 3306 |
| Bind address | Any |
- Click .
Adding a user
- Select > .
- Click .
- Provide essential user information:
| Parameter | Value |
|---|---|
| Login | john_smith |
| Blocked | |
| Account validity | Indefinite |
| Role | user |
| Preferred language | English |
| Full name | John Smith |
john@smith.com |
|
| Organization | |
| Phone | |
| AD Domain | |
| LDAP Base | |
| Permissions | |
| Granted users | |
| Connections | |
| Connections | |
| Authentication | |
| Type | Password |
| Password | john11 |
| Repeat password | john11 |
- Click .
Adding a connection
- Select > to access the connections configuration page.
- Click the button.
- Provide connection details:
| Parameter | Value |
|---|---|
| Name | mysql |
| Blocked | |
| Notifications | |
| Users | john_smith |
| Sessions recording | Complete |
| OCR sessions | |
| Delete session data after | 10 days |
| Protocol functionality | |
| RDP Functionality | default settings |
| SSH Functionality | default settings |
| VNC Functionality | default settings |
| Permissions | |
| Granted users | |
| Servers | |
| Server | mysql_test |
| Policy | |
| Replace user |  admin |
| Replace secret | Replace with password |
| Password | password |
| Repeat password | password |
- Click .
Establishing connection with a MySQL database
- Launch a command line interface client.
- Enter
mysql -h 10.0.40.50 -u john_smith -p, to connect to the database server. - Enter the user’s password.
- Continue browsing the database contents using SQL queries.
Viewing user session
- Open a web browser and go to the Wheel Fudo PAM administration page.
- Enter user login and password to log in to Wheel Fudo PAM administration panel.
- Select > .
- Click .
- Find John Smith’s session and click i.
Related topics: