Axidian introduces Axidian Privilege 2.9.
Now you can select FreeIPA directory service as a user directory. This means that now Axidian Privilege can be installed not only on Windows, but also on any Linux distribution with Docker support.
Axidian introduced a new component RDP Proxy, which is based on freely distributed software. This component allows administrators to control connections to protected resources via the RDP protocol.
User groups feature is upgraded. Earlier you could create user groups for PAM users only. And now you can create user groups based on groups from external LDAP-supported directories such as Active Directory and FreeIPA.
This article covers all new features implemented in Axidian Privilege 2.9.
FreeIPA Support
In version 2.9, we now let you select FreeIPA directory service as a user directory and use FreeIPA to authenticate Axidian Privilege users. This means that now Axidian Privilege can be installed on any Linux distribution with Docker support.
RDP Proxy
In this version, we have added a new component RDP Proxy. It is a proxy server for RDP sessions. This component allows administrators to control connections to protected resources via the RDP protocol.
RDP Proxy is installed on Linux Access Server to do the following:
- check user access rights;
- implement two-factor authentication;
- save entered text, take screenshots and record video during sessions;
- shadow copy of files transferred by users during sessions.
RDP Proxy is based on freely distributed software. Docker is used for deployment.
Issuing Permissions to User Groups from LDAP-supported Directories
In version 2.9, it is now possible to create user groups based on groups from external LDAP-supported directories such as Active Directory and FreeIPA.
Permission granted to a group is shared among all members within the group. Users lose their permissions when leaving a group.
An Axidian Privilege group and a directory service group can be linked to each other, which makes them synchronized: changes in the directory service group will automatically appear in the Axidian Privilege group.
Access to Axidian Privilege from Different Subnets
Depending on the network location of the connection source, users see different lists of available resources. In their turn, administrators can set up different lists of available connections, which can change according to where users go through verification.
Ansible Playbooks and Web Master for Creating Configuration Files
To simplify the installation and configuration of Axidian Privilege components, we have developed the following tools:
- With Ansible playbooks, administrators can automate environment preparation on servers, including Docker installation and deployment of Axidian Privilege components.
- With the new web master with a straightforward graphical user interface, administrators can now configure Axidian Privilege components by filling out the fields of the web master instead of editing text files.
These tools will help reduce the effort required to deploy and update Axidian Privilege.
Getting One-Time Passwords via Email
Now it is possible to get one-time passwords (OTP) via email. OTPs are used as a second authentication factor. This feature helps companies that cannot use applications to generate time-based one-time passwords (TOTP).
Axidian Privilege 2.9 is not just an upgrade, it’s a leap forward in securing your digital assets. Request a demo and experience the next level of privileged access management. Click below to schedule your personalized demo.
