Supported protocols¶
This topic describes in detail Wheel Fudo PAM protocols support.
Citrix StoreFront (HTTP)¶
Supported connection modes:
- Gateway,
- Proxy,
- Transparent.
Notes:
- Session player displays raw text without graphical rendering.
- Lack of bastion mode support results from protocol’s limitations. Citrix StoreFront itself provides access to a bastion of hosts. When logging to Citrix StoreFront, user can select desired host to connect to over ICA protocol.
HTTP¶
Supported connection modes:
- Gateway,
- Proxy,
- Transparent.
Notes:
- Session player displays raw text without graphical rendering.
- Bastion mode is not supported due to limitations of the protocol.
- Access to external resources is not monitored.
- Following redirections is not supported.
ICA¶
Supported connection modes:
- Bastion (option to enter account or target server in the ICA file),
- Gateway,
- Proxy,
- Transparent.
Supported client applications:
- Citrix Receiver.
Modbus¶
Supported connection modes:
- Gateway,
- Proxy,
- Transparent.
Notes:
- Bastion mode is not supported due to limitations of the protocol.
MS SQL (TDS)¶
Supported connection modes:
- Bastion,
- Gateway,
- Proxy,
- Transparent.
Supported client applications:
- SQL Server Management Studio,
- sqsh.
MySQL¶
Supported connection modes:
- Gateway,
- Proxy,
- Transparent.
Supported client applications:
- Official MySQL client,
- PyMySQL libraries for Python.
Notes:
- Bastion mode is not supported due to limitations of the protocol.
- Active Directory and other external authentication sources are not supported.
Oracle¶
Oracle is a proprietary protocol and its implementation requires reverse engineering. This results in a limited support in development of new features as well as addressing potential issues.
Supported connection modes:
- Gateway,
- Proxy,
- Transparent.
Supported client applications:
- SQLDeveloper 4.1.3.20.78,
- SQL*Plus: Release 11.2.0.4.0 Production.
Notes:
- Active Directory and other external authentication sources are not supported.
- Session player only displays clients querries (server’s responds are not included).
- Oracle 10 and 11 are supported.
- Bastion mode is not supported due to limitations of the protocol.
RDP¶
Supported connection modes:
- Bastion,
- Gateway,
- Proxy,
- Transparent.
Supported client applications:
- All official Microsoft clients for Windows and macOS,
- FreeRDP 2.0 i newer.
Notes:
- When authenticating Fudo users against AD (or other external source) the TLS+NLA (Network Level Authentication) is not supported; TLS mode is used instead. NLA mode on server side is supported.
- RemoteApp support is in development.
SSH¶
Supported connection modes:
- Bastion,
- Gateway,
- Proxy,
- Transparent.
Supported features:
- Connections multiplexing,
- SCP,
- Ports redirection.
Notes:
- SFTP sessions playback is not supported,
- SSH keys forwarding is not supported.
Telnet¶
Supported connection modes:
- Bastion,
- Gateway,
- Proxy,
- Transparent.
Notes:
- User must authenticate twice - first against Fudo and then against the target host.
Telnet 3270¶
Supported connection modes:
- Bastion,
- Gateway,
- Proxy,
- Transparent.
Notes:
- User must authenticate twice - first against Fudo and then against the target host.
Supported client applications:
- IBM Personal Communications,
- c3270.
Telnet 5250¶
Supported connection modes:
- Bastion,
- Gateway,
- Proxy,
- Transparent.
Notes:
- User must authenticate twice - first against Fudo and then against the target host.
- It is not possible to join a Telnet 5250 session.
Supported client applications:
- IBM Personal Communications,
- tn5250.
VNC¶
Supported connection modes:
- Bastion,
- Gateway,
- Proxy,
- Transparent.
Supported client applications:
- TightVNC,
- RealVNC.