Axidian has released version 3.3 of Axidian Privilege, a solution for managing privileged user access. The key product updates expand secure access to web resources, simplify session management, and increase the flexibility of access control.
Key improvements of this release include expanded support for web sessions via a dedicated proxy server, broader browser-based connectivity options, and extended database access capabilities. More details about these and other changes implemented in Axidian Privilege 3.3 are covered in the article.
Browser-Based Access to Web Resources from the User Console (Without RDS)
For teams that don’t want to rely on Microsoft RDS, Axidian Privilege allows direct browser-based access to HTTPS resources in an isolated environment on Linux hosts.
Users can open web resources directly from the User Console (UC). Administrators can use SSO templates to automatically fill credentials on target systems, so users get seamless access, while passwords remain hidden. The result is a smoother experience for users and stronger security where it matters most.
Browser-Based RDP and SSH Access from the User Console
Connection to target systems is now even faster and easier. Axidian Privilege secures direct connection from web browsers to RDP and SSH resources. Users can access remote desktops or command-line shells from the User Console (UC), without installing any client applications. This is especially useful for remote work scenarios, such as providing secure access to external contractors.
MS SQL session proxying
Database access in Axidian Privilege is now more consistent. The SQL Access Module supports secure connections to Microsoft SQL Server, using the same proxy-based approach already in place for PostgreSQL. This allows teams to manage access to different database platforms through a unified workflow, without changing how sessions are handled or controlled.
Please note that the SQL Proxy module is available in early access mode until December 31, 2026. After this date, the appropriate licenses will be required.
Administrator Dashboard
Day-to-day monitoring in Axidian Privilege takes even less time for administrators: key activity and system metrics are brought together in a single, unified dashboard within the Management Console (MC).
The dashboard presents clear statistics on sessions, permissions, accounts, failed authentication attempts, licenses, credential access, and overall user activity. Each widget links directly to the relevant PAM section for deeper analysis, making it easy to move from high-level visibility to deeper investigation when needed.
Session launch without re-authentication
PAM now allows users to start a session without re-authenticating. By using a downloaded RDP file or a copied connection command, users can connect to a target resource once without having to re-enter their credentials.
This approach improves usability while also strengthening security by reducing the number of times sensitive credentials are entered.
Flexible access control by days of the week
In Axidian Privilege, administrators can define which days of the week a permission is active, making it simple to limit access during weekends or non-working days.
Day-of-week rules apply to all PAM operations and can be combined with other permission settings to create precise and flexible access control policies.
Support for Ed25519 SSH keys
PAM now supports the modern Ed25519 cryptographic algorithm for SSH keys used by privileged accounts. Administrators can choose between RSA and Ed25519 when creating accounts or when rotating SSH keys.
The system allows both generating new Ed25519 keys and importing existing keys in OpenSSH format. Compared to traditional RSA keys, Ed25519 offers stronger security and better cryptographic efficiency.
Automatic logout from PAM
To enhance security, you can define a period of inactivity, after which Axidian Privilege should automatically log users out of the Management Console and User Console. This helps prevent unauthorized access if a workstation is left unattended.
Complete Access Lockout in PAM
Account blocking is now possible for both regular users and admins. Once an account is blocked, all access to the system is fully disabled, including authentication to the Management or User Console.
______________
Contact us to learn more about all the benefits of Axidian Privilege.
