1. Authentication Authorization process:
Binary program location: /OPT/FREESVR/AUDIT/AUTHD/SBIN/FREESVR-AUTHD
configuration file location : /opt/freesvr/audit/authd/etc/freesvr_authd_config
Log location : /opt/freesvr/audit/authd/log/freesvr-authd.log
Function Description:
Authentication authorization process for users to log on to the Fortress machine authentication, authorization of the Judgment program, the user through the Fortress computer login operation and maintenance equipment, must pass through the process of authentication and authorization to judge, authentication authorization through after the login operations.
S sh agent, rdp telnet proxy, ftp agent, sftp sent to freesvr-authd process, freesvr-authd According to the information sent, if both authentication and authorization are allowed, the signal passed by the agent is returned, and if the policy does not allow it, the signal rejected by the agent is returned.
The authentication authorization process does not have debug mode, the entire authentication process is recorded in log , and the authentication entries, structures and error messages are written to Loginacct Table, this form is at the front desk
Report Management - Login report - Authorization details can be viewed
Therefore, if the fortress machine is used in the process of the machine can not log in, then to log on to the foreground page to view this menu, if you do not understand, in the background to view the log, if still cannot find the reason, in the DEBUG agent.
2.SSH Agent and Audit procedure :
Binary program location: /opt/freesvr/audit/sshgw-audit/sbin/ssh-audit
Log location : This program does not provide log records
Program Debug command:
/opt/freesvr/audit/sshgw-audit/sbin/ssh-audit 127.0.0.1 – P – N – m – T
The program prints the entire connection process for debug Debugging
3.RDP Agent and audit procedures
Binary program location: /USR/LOCAL/SBIN/FREESVR_RDP
Log location : This program does not provide log records
Program Debug command:
/USR/LOCAL/SBIN/FREESVR_RDP – m Proxy-nd
The program prints the entire connection process for debug Debugging
4.Telnet Agent and audit procedures
Program Location :/opt/freesvr/audit/ssh-replay/sbin/ssh-replay
Log location : This program does not provide log records
Program Debug command:
/opt/freesvr/audit/ssh-replay/sbin/ssh-replay –D
Fortress Machine-Kylin open source bastion machine background Process list and debug instructions