Creating an anonymous account

To create an account definition, follow the instructions below.

  1. Click + icon next to the Accounts tab of the Management sub-section, or
  2. Select Management > Accounts and then click Add account.
../../_images/5-5-add-account.png
  1. Define object’s name.
  1. Select Blocked option to disable account after it’s created (if needed).
../../_images/5-5-add-account-anonymous.png

  1. Select desired session recording option.

    • all - Fudo Enterprise saves session metadata (basic session information), records raw network traffic (RAW file) and stores session data in internal file format (FBS). The latter enables session playback using the built-in session player, as well as exporting sessions to a selection of video file formats.
    • raw - Fudo Enterprise saves session metadata (basic session information) and records raw network traffic (RAW file). The raw data can be downloaded but it cannot be played back in graphical form using the built-in session player (session player only depicts the networks packet exchange between the client and the target host).
    • noraw - Fudo Enterprise records the session data in a non-raw format that could be played back using the built-in session player.
    • none - Fudo Enterprise saves only session metadata (basic session information).

  2. From the Category drop-down list select privileged or non-privileged account category.

Note

During manual account creation, assigning the category as privileged or non-privileged is purely informational, yet during the Discovery, it is automatically assigned based on the account’s parameters in the source system.

  1. Select the Notes option to activate the field where you can enter a message for User Access Gateway users. If permissions are granted, notes can be also edited.

Note

Account notes can be displayed in the User Access Gateway.

../../_images/user-portal-note.png
  1. In the Settings tab, in the Type field, press the ANONYMOUS button.
  2. In the Target section, select Server or Pool button to assign account to a specific server or a server pool by selecting it in the next step from the Server, or Pool drop-down list.
  1. Select SSH Agent forwarding option to authenticate the user against the target host using client’s SSH key.

Note

This option is available only after selecting an SSH server. Use -A option for connecting to SSH server.

  1. To have RDP, VNC or rendered HTTP sessions automatically processed, you can enable OCR session option for this account and select the language of processed data.
../../_images/5-5-accounts-ocr.png

Note

The OCR option is available only after selecting an RDP, VNC or HTTP server.

  1. In the Data retention section, define automatic data removal settings.
  • Select Override global retention settings option to set other than global retention values for connections established using this account.
  • Check the Remove session data option to exclude sessions from retention mechanism.
  • Next to the Remove session data field, define the number of days after which the session data will moved to external storage device. Default value when the option is checked, is 30 days.
../../_images/5-5-accounts-retention.png

Note

Data retention for sessions established using this account will only be active if global retention is enabled. To change global retention settings see chapter Data Retention.

  1. Click Save to proceed with further configuration.
  1. Go to the Permissions tab to add users allowed to manage this object.
  1. Click Save.

Note

The Password changers tab and the Remote applications tab are active only when creating regular or forward account types.


Related topics: