Access Topology
Kylin Fortress Machine access mode for physical bypass, connected serial mode, the fortress machine on-line, in order to achieve SSO and audit function, require all operations personnel operation and maintenance operations must go through the fortress machine, therefore, operations personnel operation mode will change, Operation and maintenance personnel use the Fortress machine Way mainly includes webportal way and tool direct login way two kinds.
650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M01/7E/AC/wKioL1cHGeuRtWTMAAEwSI68gvI088.jpg "title=" Deployment diagram. jpg "alt=" wkiol1chgeurtwtmaaewsi68gvi088.jpg "/>
Kylin Fortress Machine access mode for physical bypass, connected serial mode, the fortress machine on-line, in order to achieve SSO and audit function, require all operations personnel operation and maintenance operations must go through the fortress machine, therefore, operations personnel operation mode will change, Operation and maintenance personnel use the Fortress machine Way mainly includes webportal way and tool direct login way two kinds.
webportal mode, users want to carry out operations, you need to use IE, in the URL to enter the https://bastion machine IP to open the Bastion machine interface, enter the bastion machine user name, password for the bastion Master account password + token generated 6-bit dynamic password after opening webportal, In Webportal, you can list all the devices that users can log on to, and users can log on to the target system directly when they click on the tool behind the device.
Tool Direct login, the user through the Web login to the fortress machine, in the Device Management-list export, click the following the Submit button, you can make the session file download, and into the corresponding operations tools, users use, do not need to modify the past operation and maintenance habits, just to open the operation and maintenance tools , in the Ops tool, click on the device you want to log in, enter the bastion machine user name, password is the bastion Master account password + token generated 6-bit dynamic password can be logged into the target system.
Open source Bastion Machine Access Topology-unicorn open-source Fortress machine