Documente Academic
Documente Profesional
Documente Cultură
WCP
SESSION AUDIT
CURRENT
SESSION
CURRENT SESSION
© Copyright WALLIX 4
CURRENT SESSION
▪ Display the current connections
© Copyright WALLIX 5
CURRENT SESSION
▪ Close running connections
RDP
SSH
© Copyright WALLIX 6
SESSION
HISTORY
SESSION HISTORY Session ended
successfully
▪ Audit
Session killed by
admin
RAWTCPIP : Download
pcap file of captured
packets Session interrupted
by the Bastion
SSH: Download session
record (ttyrec format)
Display session
recording
© Copyright WALLIX 8
SESSION HISTORY – RDP SESSION
© Copyright WALLIX 9
SESSION HISTORY – RDP SESSION
© Copyright WALLIX 10
SESSION HISTORY – RDP SESSION
© Copyright WALLIX 11
SESSION HISTORY – RDP SESSION
© Copyright WALLIX 12
SESSION HISTORY – SSH SESSION
© Copyright WALLIX 13
SESSION HISTORY – SSH SESSION
© Copyright WALLIX 14
SESSION HISTORY – RAWTCPIP SESSION
© Copyright WALLIX 15
APPROVAL
HISTORY
APPROVAL HISTORY
© Copyright WALLIX 17
APPROVAL HISTORY
© Copyright WALLIX 18
ACCOUNT
HISTORY
ACCOUNT HISTORY
© Copyright WALLIX 20
AUTHENTICATION
HISTORY
AUTHENTICATION HISTORY
© Copyright WALLIX 22
CONNECTION
STATISTICS
CONNECTION STATISTICS
© Copyright WALLIX 24
CONNECTION STATISTICS
© Copyright WALLIX 25
CONNECTION STATISTICS
© Copyright WALLIX 26
SESSION
RECORDING
PARAMETERS
SESSION RECORDING PARAMETERS
▪ Stop/Start Session recording
© Copyright WALLIX 28
SESSION RECORDING PARAMETERS
© Copyright WALLIX 29
SESSION RECORDING PARAMETERS
▪ Remote Storage
© Copyright WALLIX 30
MANAGING THE
SESSION
RECORDS
CLI COMMANDS
▪ WABSessionLogExport: Export and/or purge session recordings
© Copyright WALLIX 32
CLI COMMANDS
▪ Example of exporting Logs
© Copyright WALLIX 33
CLI COMMANDS
▪ WABSessionLogImport : Import archived session recordings
• -f FILE: Import this archive file.
© Copyright WALLIX 34
LAB3: SESSION AUDIT
Internet
Bastion
192.168.0.40 192.168.0.30 192.168.0.20 192.168.0.10
Trainee4 Trainee3 Trainee2 Trainee1
Users: Users: Users: Users:
adminbastion4 adminbastion3 adminbastion2 adminbastion1
userbastion4 userbastion3 userbastion2 userbastion1
approver4 approver3 approver2 approver1
auditor4 auditor3 auditor2 auditor1
192.168.0.45 192.168.0.35 192.168.0.25 192.168.0.15
© Copyright WALLIX 35