previous
next
The overview diagram depicts the flow of secure interactions between a client and the host in a typical host session, including the option to use the Security Proxy Add-On (steps 5-6).
Other add-on products are also identified.
User connects to the Administrative Server.
User authenticates to a directory server (LDAP/Active Directory) or other identity management system (optional).
The directory server provides user and group identity (optional).
The Administrative Server sends an emulation session to the authorized client.
When the (optional) Security Proxy Server is configured for use by a session, the emulation client makes a TLS connection to Security Proxy and sends it a signed token.
The Security Proxy Server validates the session token and establishes a connection to the specified host:port.
When no Security Proxy is present or a session is not configured to use it, the authorized user connects directly to the host.