PAM Monitoring

Monitoring and reporting

Privileged accounts dashboard

Description

Soffid provides a monitoring functionality to consult all the information about the different Jump servers installed and configured.

The displayed info is the following:

Screen overview

image-1629183744388.png


To activate this view you will need to enable the Feed statistic tables task on the  Scheduled tasks page.

Search in PAM recordings

Description

Soffid provides the functionality that allows searching for information about the PAM recording sessions.

That option is located on Main Menu > Administration > Monitoring and reporting > Search in PAM recordings

First of all, to query the PAM recording, you could apply some filters to refine your search. Then, when you click the Search button, Soffid will show you all the recording sessions that comply with the criteria specified.

If you click on one record, Soffid will show you a new page with all the data about the session and the recorded video. If you query with a typed keys filter, a bookmark with the minute and second will show, and it will allow you to go directly to that point and view the action.

Screen overview

Standard attributes

Actions

Download CSV file

Allows you to download a CSV file with the PAM recording information.

Search

Allows you to query the PAM recording by applying some filters.

View recording

Allows you to view the recording. You need to click on the record of the PAM recording that you want to view, then Soffid will show you a new page with all the information about the session and the recording video.



Access logs

Description

The access log page allows querying all the information about the opened sessions. 

Note that any session that was active during the specified date will be shown, even when it started before of finished after that date.

Screen overview
Custom attributes

Actions

Query Allows you to query accounts through different search systems, Quick and Advanced.
Add or remove columns Allows to show and hide columns in the table.
Download CSV file Allows to download a CSV file with the information of access logs. 

Sessions

Description

The sessions page displays the current open sessions made with ESSO, WSSO or PAM for which the user is the owner. 

This functionality allows the owner users, with appropriate privileges, to open and view online a session opened by another user. It also allows them to interact if necessary.

Screen overview
Custom attributes

Actions

Add or remove columns Allows to show and hide columns in the table.
Download CSV file Allows to download a CSV file with the information of access logs. 


💻System Monitoring

Launcher

Soffid allows you to check the status of the launcher by browsing an URL:

Request
https://<your-host>/launch/status

For instance: http://demolab.soffid.pat.lab:8082/launch/status

Response
{
  "sessions":0,
  "status":"ok"
}

Store

In order to monitor the store, you will need the user and password with the appropriate permissions to view the status URL. This username and password come from the script executed to create the PAM containers.

image-1664796068870.png

To monitor the store you need to browse the following URL:

Request
https://<your-host>/store/check

For instance: http://demolab.soffid.pat.lab:8081/store/check

up.png

Response
{
  "usedSpace": 156933901,
  "freeSpace": 161442168832,
  "status": "OK"
}