Fudo Enterprise 5.5 Documentation¶
Welcome!
The following are the enhancements and modifications introduced in version 5.5 of Fudo Enterprise:
New Fudo Officer 2.0 mobile app, featuring Just In Time functionality, now available for both Android and iOS, ensuring faster and more efficient performance on the go.
Added a new Session Viewer role, allowing users to view sessions but restricting access to other tabs and functions. Dashboard information for this role is also limited to session-related widgets like ‘New Sessions’, ‘Concurrent Sessions’, and ‘Suspicious Sessions’.
Added new RDP functionality in the Safe configuration, allowing custom content to be added to the generated RDP file.
Introduced a beta feature to set timeouts for both the Admin Panel and User Portal.
All tabs systematically updated to the new GUI now offer comprehensive API coverage, meaning users can perform configuration, search, and filter tasks programmatically via the API. This enhancement streamlines workflows, increases efficiency, and allows for better integration with other systems and automation tools.
Optimized the interface for easier and faster configuring, searching, and filtering across multiple tabs, including:
Accounts tab - refined display referring to the new interface style. The new clear filtering menu shows all possible filter options.
Safes tab - six new tabs helps to easier manage general Safe’s settings and functionality, but also assign Policies, Users, Accounts or permissions and notifications. New clear filtering menu shows all possible filters options.
Password Changers tab - refined display referring to the new interface style. The new clear filtering menu shows all possible filter options.
Policies tab - refined display referring to the new interface style.
Artificial Intelligence tab - refined display referring to the new interface style.
Authentication tab - three new rearranged subtabs containing:
- External authentication methods like Active Directory, LDAP, Cerb and Radius.
- OpenID Connect tab to configure support for identity providers like EntraID or Okta.
- Global tab for OATH, SMS, DUO, SSO, and Kerberos configuration.
External Password Repositories tab - refined display referring to the new interface style.
- Added the ability to obtain a server certificate when configuring an External Password Repository.
Resources tab - refined display referring to the new interface style.
Backups and Retention tab - refined display referring to the new interface style.
Events Log tab - easier to manage and improved filtering features.
- Introduced functionality to sort logs by time, enhancing the previous date-based sorting capability.
- You can quickly select one of the commonly used date range filters, like ‘Today’, ‘last 24 hours’, ‘This Week’, ‘last 1 hour’, ‘last 1 year’, etc.
- Filters ‘From date’ and ‘To date’ are now always visible and accessible directly from the tab.
- The new clear filtering menu shows all possible filter options.
- Individual columns can now be toggled for visibility. The available columns are: ‘Timestamp’, ‘Log Level’, ‘Log Type’, ‘Message’, and ‘Node’.
The default session recording type for new accounts has been changed from all to noraw. This means that Fudo Enterprise will now, by default, record session data in a non-raw format, allowing it to be played back using the built-in session player.
Upgraded Access Gateway to Angular v.16 for improved performance and functionality.
Now Users receive information about the reason for the rejected Access Request in mail notifications.
PostgreSQL has been updated to version 16.2.
Updated RDP file naming to reflect connection details. Files created in Access Gateway for native client RDP connections are now named appropriately.
Implemented event logging for AI-detected threats.
Warning
DISCONTINUED FEATURES:
- Fudo Enterprise 5.5 no longer supports the Fudo Officer 1.0 mobile application. Users relying on this integration must hold off on upgrading to version 5.5 until the new version of the Fudo Officer app is released. The updated app will be available shortly in your respective app stores. Stay tuned for its release.
- Fudo Enterprise 5.5 no longer supports the Mobile Token authentication method used to bind the Fudo Officer mobile application to a User. You must unlink all Fudo Officer bindings from Users configuration before the upgrade.
- Fudo Enterprise 5.5 no longer supports the CyberArk Enterprise Password Vault functionality. Users using this integration need to migrate to CyberArk Credential Provider external repository.
- Fudo Enterprise 5.5 no longer supports the Ticketing systems (Service now) functionality.
ANNOUNCEMENTS:
- Fudo Enterprise 5.5 is the last version supporting gateway and transparent modes in the listeners configuration. Listeners using these modes must be reconfigured to use proxy or bastion modes before upgrading to the next release.
- Fudo Enterprise 5.5 is the last version supporting AAPM (Application to Application Password Manager). The AAPM will be replaced by the functionality of APIv2 in the next release.
- Fudo Enterprise 5.5 is the last version supporting APIv1. The support will be removed in the next release. All scripts using this APIv1 should be rewritten to use APIv2.
- Fudo Enterprise 5.5 is the final version to support DHCP, which will be removed in the next release.
Table of contents¶
- About documentation
- Layout themes of the Admin Panel
- Introduction
- System deployment
- Quick start
- Users
- Servers
- Pools
- Remote Applications
- Accounts
- Listeners
- Creating a listener
- Setting up the SSH listener
- Setting up the RDP listener
- Setting up the VNC listener
- Setting up the HTTP listener
- Setting up the Modbus listener
- Setting up the MySQL listener
- Setting up the TCP listener
- Setting up the MS SQL listener
- Setting up the Telnet listener
- Setting up the Telnet 3270 listener
- Setting up the Telnet 5250 listener
- Editing a listener
- Blocking a listener
- Unblocking a listener
- Deleting a listener
- Creating a listener
- Safes
- Discovery
- Password changers
- Policies
- Downloads
- Account activity in the Access Gateway
- Access requests
- Sessions
- Filtering sessions
- Viewing sessions
- Pausing connection
- Terminating connection
- Joining live session
- Sharing sessions
- Commenting sessions
- Sessions’ retention lockdown
- Exporting sessions
- Deleting sessions
- OCR processing sessions
- Session data replication
- Timestamping selected sessions
- Cancelling sessions timestamping
- Require approval for access
- AI sessions processing
- Reports
- Productivity
- Administration
- System
- Time Out
- Network settings
- Notifications
- Artificial Intelligence
- Trusted time-stamping
- Certificate-based authentication scheme
- Authentication
- External passwords repositories
- Resources
- System version restore
- System restart
- SNMP
- Backup and retention
- External storage
- Exporting/importing system configuration
- Cluster configuration
- Events log
- Changing encryption passphrase
- Integration with CERB server
- System maintenance
- Reference information
- Fudo Officer 2.0
- AAPM (Application to Application Password Manager)
- Client applications
- Troubleshooting
- Use Cases
- Frequently asked questions
- Glossary