立即与支持人员聊天
与支持团队交流

One Identity Safeguard for Privileged Sessions 7.3 - Getting Started with Safeguard for Privileged Sessions as a Virtual Appliance

Getting started with One Identity Safeguard for Privileged Sessions

Before you start:

This guide will help you get started with One Identity Safeguard for Privileged Sessions (SPS). It will explain the basic concepts and features of the product and walk you through a simple control and monitor setup for SSH and RDP connections. It will give you pointers to the relevant sections of the One Identity Safeguard for Privileged Sessions - Administration Guide to help you learn more about the more advanced options.

NOTE: When setting up a virtual environment, carefully consider the configuration aspects such as CPU, memory availability, I/O subsystem, and network infrastructure to ensure the virtual layer has the necessary resources available. Please consult One Identity's Product Support Policies for more information on environment virtualization.

Topics:

The major benefits of One Identity Safeguard for Privileged Sessions (SPS)

One Identity Safeguard for Privileged Sessions (SPS) is part of the One Identity Safeguard solution, which in turn is part of One Identity's Privileged Access Management portfolio. Addressing large enterprise needs, SPS is a privileged session management solution which provides industry-leading access control, session recording and auditing to prevent privileged account misuse and accelerate forensics investigations.

SPS is a quickly deployable enterprise device, completely independent from clients and servers - integrating seamlessly into existing networks. It captures the activity data necessary for user profiling and enables full user session drill down for forensic investigations.

SPS has full control over the SSH, RDP, Telnet, TN3270, TN5250, Citrix ICA, and VNC connections, giving a framework (with solid boundaries) for the work of the administrators. The most notable features of SPS are the following:

Central policy enforcement

SPS acts as a centralized authentication and access-control point in your IT environment which protects against privileged identity theft and malicious insiders. The granular access management helps you to control who can access what and when on your critical IT assets.

Prevention of malicious activities

SPS monitors privileged user sessions in real-time and detects policy violations as they occur. In case of detecting a suspicious user activity (for example entering a destructive command, such as the "rm"), SPS can send you an alert or immediately terminate the connection.

Greater accountability (deterrance)

SPS audits "who did what", for example on your database- or SAP servers. Aware of this, your employees will do their work with a greater sense of responsibility leading to a reduction in human errors. By having an easily interpreted, tamper-proof record in encrypted, timestamped, and digitally signed audit trails, finger-pointing issues can be eliminated.

Faster, cost-effective compliance audits

SPS makes all user activity traceable by recording them in high quality, tamper-proof and easily searchable audit trails. All data is stored in encrypted, timestamped and signed files, preventing any modification or manipulation. The movie-like audit trails ensure that all the necessary information is accessible for ad-hoc analyses or audit reports.

Lower troubleshooting and forensics costs

When something wrong happens, everybody wants to know the real story. Analyzing thousands of text-based logs can be a nightmare and may require the participation of external experts. The ability to easily reconstruct user sessions allows you to shorten investigation time and avoid unexpected cost.

Supported virtual environments for quick starting One Identity Safeguard for Privileged Sessions

To start using One Identity Safeguard for Privileged Sessions as a virtual appliance, you can download and install the latest SPS ISO file into a virtual machine. The following virtual environments are supported for evaluation:

  • Kernel-based Virtual Machine (KVM)
  • Microsoft Hyper-V
  • VMware
  • vSphere (VMware ESX)
  • Azure Marketplace
  • Amazon Web Services (AWS)

SPS may work in other virtual environments like VirtualBox as well, although these are officially not supported. You can obtain an quick start license and the ISO file using your support portal account.

Setting up SPS and the virtual environment

To start using SPS, first install it in a virtual machine.

vSphere

Follow the instructions provided in "One Identity Safeguard for Privileged Sessions VMware Installation Guide" in the Installation Guide.

VirtualBox

Follow the instructions provided in "One Identity Safeguard for Privileged Sessions VMware Installation Guide" in the Installation Guide.

Hyper-V

Follow the instructions provided in "One Identity Safeguard for Privileged Sessions Hyper-V Installation Guide" in the Installation Guide.

Kernel-based Virtual Machine (KVM)

Follow the instructions provided in "Installing One Identity Safeguard for Privileged Sessions as a Kernel-based Virtual Machine" in the Installation Guide.

Azure Marketplace

Follow the instructions provided in " NoneAzure deployment" in the Administration Guide.

Amazon Web Services (AWS)

Follow the instructions provided in " NoneAWS deployment" in the Administration Guide.

自助服务工具
知识库
通知和警报
产品支持
下载软件
技术说明文件
用户论坛
视频教程
RSS订阅源
联系我们
获得许可 帮助
技术支持
查看全部
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级