Dynamic server

Fudo PAM enables defining a group of automatically managed servers deployed within a specified network. When a user is trying to establish a connection with a specific resource that is within the defined network, Fudo PAM verifies whether he has sufficient privileges and automatically adds host within the existing dynamic servers object, downloads its certificate and establishes a monitored connection.


Creating a dynamic servers group

  1. Select Management > Servers.
  2. Click Add.
../../_images/servers_add.png
  1. Enter server’s unique name.
  1. Select Blocked option to disable access to server after it’s created.
  1. Select desired protocol and define corresponding configuration parameters.
  2. In the Destination host section, enter server’s IP address, subnet mask in CIDR format and port number.
  3. From the Bind address drop-down list, select Fudo PAM IP address used for communicating with this server.

Note

The Bind address drop-down list elements are IP address defined in the Network configuration menu. Refer to Network interfaces configuration for more information on managing physical interfaces.

  1. Click the i icon to upload the CA certificate used for generating certificates for dynamically added servers.
  2. Fill in the rest of the parameters and click Save.

Adding a single host to a servers group

  1. Select Management > Servers.
  1. Find and click desired servers group object.

Note

Server group objects are marked with the icon.

../../_images/servers_list_group.png
  1. Click Add host.
  2. Provide server’s IP address.
  3. Click the i icon to download server’s certificate.
  4. Click Save.

Related topics: