Resources

Last update: 28.03.2025

Resource access via Fudo ShareAccess is administered in Fudo Enterprise through its objects, including Users, Servers, Accounts, and Safes. This section explains the fundamental workflow for resource management. For more information please follow the Fudo Enterprise documentation.

Note

In Fudo ShareAccess, visibility of configurations depends on specific conditions. Below is a summary of the prerequisites and conditions that must be met for configurations to be visible:

  • User Requirements: The user must be paired with or invited to Fudo ShareAccess.

  • Supported Protocols: The following protocols are available for use within Fudo ShareAccess:

    • RDP
    • SSH

  • Account Types: Only the following account types are supported:

    • Regular accounts with properly configured credentials
    • Forward accounts

  • The Safe must have the following options enabled:

    • Fudo ShareAccess enabled
    • OTP enabled
    • Webclient enabled

*Listener is not required object for giving access to resources to Fudo ShareAccess.

Quick Guide

This short list outlines the basic steps for setting up resource access in Fudo ShareAccess, which will be described in detail later in this documentation.


  1. Create Users - Begin by creating a new user within the Fudo Enterprise.
  2. Invite User to Fudo ShareAccess - Associate the newly created user with the Fudo ShareAccess.
  3. Create Server - Set up a server that the user will access.
  4. Create Account - Generate an account that is linked to the created server.
  5. Create Safe - Establish a safe, which will be used to manage the user’s access to resources.
  6. Check Fudo ShareAccess Checkbox in Safe setup - Ensure the Fudo ShareAccess checkbox is selected within the  safe settings to allow Fudo ShareAccess access.
  7. Add User and Account to Safe - Add both the user and the account to the safe to grant the necessary permissions.
  8. Verify User Trust - Confirm that the user is marked as Trusted, ensuring they have the required access level.

By following these steps, you’ll enable Fudo ShareAccess users to see and access the resources they need efficiently. Each of these steps is explained in detail in the following sections.

Create Users

Create users and invite them to join Fudo ShareAccess. Refer to the Inviting Members Through Fudo Enterprise section for detailed instructions.

Create Server

Create the server you want to grant access to via Fudo ShareAccess:

  1. Select Management > Servers and then click + Add server.
  2. Enter server’s unique name.
  3. In the Settings section on the list of available protocols select RDP or SSH.
  4. From the Bind address drop-down list, select Fudo Enterprise IP address used for communicating with this server.
  5. In the Destination section select Host, IPv4 or IPv6. Enter server’s IP address.
  6. Click Save and close.

Create Account

Create an account that will be used to authenticate with the server set up in the previous section:

  1. Select Management > Accounts and then click + Add account.
  2. Define object’s name.
  3. In the Settings tab, in the Type field, press the REGULAR button.
  4. In the Target section, click the Server button to assign the account to a specific server, then choose the server created in the previous step from the Server drop-down list.
  5. In the Credentials section, enter the login for the account on the server.
  6. In the Replace secret with section, click the button for the desired option, such as Password, and enter the account password in the Secret field.
  7. Click Save and close.

Create Safe

Create a safe that directly manages user access to monitored servers. It defines the available protocol features, policies, and other details governing the relationships between users and servers.

  1. Select Management > Safes and then click + Add safe.

  2. Enter object’s name.

  3. Click Save to save the object and proceed with further configuration.

  4. In the General tab:

    • The OTP in Access Gateway option is enabled by default and is responsible for generating OTP in the AccessGateway (required).
    • Select Web Client option to allow connecting to the session using the built-in browser client (required).
    • Select Fudo ShareAccess option option to enable the Safe for use with Fudo ShareAccess (required).
    • Optionally select Just in time option and provide a number of the voters. This feature allows defining and scheduling the time when a user is allowed to access specific resources for a set period of time. The user sends requests via the Access Gateway,and the voters accept or reject them on in the Admin Panel.
    ../../../_images/5_5_shareaccess_safe.png

  5. Click Save.

Add Created User And Account To Safe

  1. Go to the Users tab to assign users allowed to access accounts assigned to this safe.
  2. Click Manage users.
  3. Mark the checkbox in front of the users’ names to enable their server access through the monitored safe.
  4. Click Save to close the modal window.
  5. Select Accounts tab to add accounts accessible through this safe.
  6. Click Manage accounts.
  7. Mark the checkbox in front of the accounts’ names to add it.
  8. Click Save two times to close the modal window.

Ensure The User Is Trusted

  1. Select Settings > Fudo ShareAccess.
  2. Find the desired user in the members list and verify that their status is TRUSTED.
../../../_images/5_5_shareaccess_trust.png

Note

Each time a user resets their password, the administrator must mark their account as Trusted again to restore access to assigned resources.

After completing this guide, the user assigned to the safe can now log in to Fudo ShareAccess and access the server linked to the safe. For more information please follow the Access Resources section.


Related topics: