3.3. Procedure – Logging in to PSM and configuring the first connection

Purpose: 

After finishing the initial configuration of PSM using the Welcome Wizard, connections must be configured between the clients and the servers. PSM inspects only the connections that are configured from the web interface, all other connections are forwarded without any inspection. The procedure below describes how to enable a simple SSH terminal or a Remote Desktop session over a transparent and a non-transparent connection.

Steps: 

  1. Login to PSM's web interface.

    Figure 3.14. The first login

    The first login
    1. Open the https://IP-address-of-interface-1/ page from your browser to access the web interface of PSM. Replace the IP-address-of-the-interface-1 string with the IP set for interface 1 in Configuring interface 1 of the Welcome Wizard (for example, 192.168.1.1).

    2. The certificate created in Creating the web interface certificate of the Welcome Wizard is displayed. Accept it.

    3. Login to the PSM web interface using the displayed login screen.

      • Enter admin into the Login field.

      • Enter the password set in Setting the administrator password for the admin user into the Password field.

      • Click Login. The main page of the PSM administration interface is displayed.

  2. Configure a new transparent connection.

      • To configure an SSH connection, select SSH Control > Connections from the Main Menu. Only terminal sessions will be permitted.

      • To configure an RDP connection, click on the RDP Control > Connections from the Main Menu. Only basic Remote Desktop sessions will be permitted (no file-sharing).

    1. Click on the icon on the right to create a new connection.

    2. Enter a name into the Name field that will identify the connection (for example, admin-server-transparent).

      Tip

      It is recommended to use descriptive names that give information about the connection: refer to the name of the accessible server, the allowed users, and so on.

    3. Enter the IP addresses defining the connection:

      Figure 3.15. <Protocol name> Control > Connections — Configuring an SSH connection in transparent mode

      <Protocol name> Control > Connections — Configuring an SSH connection in transparent mode
      • Enter the IP address of the client that will be permitted to access the server into the From field.

        You can use an IPv4 or an IPv6 address. To limit the IP range to the specified address, set the prefix to 32 (IPv4) or 128 (IPv6).

      • Enter the IP address of the server into the To field.

        You can use an IPv4 or an IPv6 address. To limit the IP range to the specified address, set the prefix to 32 (IPv4) or 128 (IPv6).

      • Enter the port number where the server is accepting connections into the Port field.

    4. Select Enable indexing.

    5. Click .

      This connection allows any user from the client machine to connect to the specified server, but permits only terminal sessions — other SSH channels like TCP forwarding are disabled.

  3. Configure a new non-transparent connection.

      • To configure an SSH connection, select SSH Control > Connections from the Main Menu. Only terminal sessions will be permitted.

      • To configure an RDP connection, click on the RDP Control > Connections from the Main Menu. Only basic Remote Desktop sessions will be permitted (that is, no clipboard or file-sharing).

    1. Click on the icon on the right to create a new connection.

    2. Enter a name into the Name field that will identify the connection (for example, admin-server-nontransparent).

      Tip

      It is recommended to use descriptive names that give information about the connection: refer to the name of the accessible server, the allowed users, and so on.

    3. Enter the IP addresses defining the connection:

      Figure 3.16. <Protocol name> Control > Connections — Configuring an SSH connection in non-transparent mode

      <Protocol name> Control > Connections — Configuring an SSH connection in non-transparent mode
      • Enter the IP address of the client that will be permitted to access the server into the From field.

        You can use an IPv4 or an IPv6 address. To limit the IP range to the specified address, set the prefix to 32 (IPv4) or 128 (IPv6).

      • Enter the IP address of PSM's physical interface 1 into the To field.

        You can use an IPv4 or an IPv6 address. To limit the IP range to the specified address, set the prefix to 32 (IPv4) or 128 (IPv6).

      • Enter a port number into the Port field.

      • Enter the IP address of the server into the Use fix address field of the Target section.

        You can use an IPv4 or an IPv6 address.

      • Enter the port number where the server is accepting connections into the Port field of the Target section.

    4. Select Enable indexing.

    5. Click .

      This connection allows any user from the client machine to connect to the specified server, but permits only terminal sessions — other SSH channels like TCP forwarding are disabled.

  4. Test the new configuration: try to initiate an SSH or and RDP connection from the client to the server.

  5. After successfully connecting to the server, do something in the connection, for example, execute a simple command in SSH (for example, ls /tmp), or launch an application in RDP (for example, the Windows Explorer), then disconnect from the server.

  6. Navigate to Search > Search on the PSM web interface. Your sessions are displayed in the list of connections. Note that for the transparent connection, the client addresses the target server, while the non-transparent connection addresses PSM.

  7. Click the icon. A summary will be displayed about the connection. Enter a text that was displayed in the connection into the search box, for example, the command you executed in SSH, or a menu item or other text you have seen in RDP (for example, Start). PSM will automatically generate a screenshot showing when the text was displayed in the connection.

  8. Click to generate a video file from the audit trail that you can replay. Depending on the load of the indexer and the length and type of the audit trail, this can take several minutes (to cancel processing the audit trail, click ). The Video status field shows the progress of the this process.

    When the video is available, changes to .

    Figure 3.17. Audit trail details

    Audit trail details
  9. To replay the video, click . The Player window opens.

  10. Play the audit trail, and review your actions.