System overview

Wheel Fudo PAM is a complete solution for managing remote privileged access. It comprises four modules:

  • PSM (Privileged Sessions Management)
  • Secret Manager
  • AAPM (Application to Application Password Manager)
  • Efficiency Analyzer

PSM

PSM module enables facilitating constant monitoring of remote access sessions to IT infrastructure. Wheel Fudo PAM acts as a proxy between users and monitored servers and it registers users’ actions, including mouse pointer moves, keystrokes and transferred files.

../../_images/Fudo.png

The PSM module records complete network traffic along with meta data, enabling precise session playback and full-text content search.

Wheel Fudo PAM enables viewing current connections and intervening in a monitored session in case the administrator notices a potential misuse of access rights.

Supported protocols and systems

Wheel Fudo PAM supports following protocols:

  • SSH,
  • RDP,
  • VNC - 24-bit (true color) connections only,
  • HTTP/HTTPS,
  • MySQL,
  • MS SQL,
  • Oracle (client applications: SQLDeveloper 4.1.3.20.78, SQL*Plus: Release 11.2.0.4.0 Production),

Note

Oracle protocol support is limited due to its undisclosed specification. Wheel Systems cannot guarantee correct Oracle databases monitoring.

  • Telnet/Telnet 3270,
  • Citrix,
  • modbus.

Detailed information on supported protocols can be found in the Reference information > Supported protocols topic.

The PSM module supports following system configurations:

  • Linux,
  • FreeBSD,
  • Mac OS X
  • Microsoft Windows Server,
  • Microsoft Windows,
  • TightVNC,
  • Solaris.

Secret manager

Wheel Fudo PAM can be also set up to automatically manage login credentials on monitored servers and periodically change passwords at specified time intervals (e.g. 1 hour).

Secret manager module supports password changing on following systems:

  • Unix
  • MySQL
  • Cisco
  • Cisco Enable Password
  • MS Windows

It also enables configuring a custom password changer as a set of commands executed on remote a host.

AAPM (Application to Application Password Manager)

AAPM module enables secure passwords exchange between applications.

Efficiency Analyzer

Efficiency Analyzer module tracks users’ actions and provides precise information on their activity and idle times.

User portal

User portal enables browsing available resources and initiating connections with monitored servers using selected listener.

../../_images/accounts.png

Related topics: