Creating an anonymous account

  1. Click + icon in the main menu next to the Accounts tab, or

Select Management > Accounts and then click Add.

../../_images/5-1-add-account.png
  1. Define object’s name.
  1. Select Blocked option to disable account after it’s created.
../../_images/5-1-add-anonymous-account.png
  1. Select anonymous from the Type drop-down list.

  2. Select desired session recording option.

    • all - Fudo PAM saves session metadata (basic session information), records raw network traffic (RAW file) and stores session data in internal file format (FBS). The latter enables session playback using the built-in session player, as well as exporting sessions to a selection of video file formats.
    • raw - Fudo PAM saves session metadata (basic session information) and records raw network traffic (RAW file). The raw data can be downloaded but it cannot be played back in graphical form using the built-in session player (session player only depicts the networks packet exchange between the client and the target host).
    • noraw - Fudo PAM records the session data in a non-raw format that could be played back using the built-in session player.
    • none - Fudo PAM saves only session metadata (basic session information).
  3. In the Notes field, enter a message to User Portal (Access Gateway) users. If permissions are granted, notes can be also edited.

Note

Account notes can be displayed in the User Portal (Access Gateway).

../../_images/user-portal-note.png
  1. In the Category field select privileged or non-privileged account category. The category serves an informational purpose.

  2. In the Data retention section, define automatic data removal settings.

    • Select Override global retention settings option to set different retention values for connections established using this account.
    • Check the Delete session data option to exclude sessions from retention mechanism.
    • Next to the Delete session data field, define the number of days after which the session data will moved to external storage device. Default value when the option is checked, is 30 days.
  3. In the Permissions section, add users allowed to manage this object.

  4. In the Server section, assign account to a specific server by selecting it from the Server drop-down list.

  1. Select SSH Agent forwarding option to authenticate the user against the target host using client’s SSH key.

Note

This option is availble only after selecting an SSH server. Use -A option for connecting to SSH server.

  1. Click Save.

Related topics: