Components
Management Server
Axidian Privilege Core
This is the central component that manages the logic of Axidian Privilege operation.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- Web application — core
Tasks:
- Managing users, privileged accounts, access, passwords, etc.
Axidian Privilege IdP
User and Component Identification Center.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → web server → Nginx Web Server
Consists of:
- Web application — idp
Tasks:
- User authentication management, 2fa issuance and verification, Axidian Privilege component authentication
Axidian Privilege Management Console
An administrative interface for management of Axidian Privilege.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- Web application — mc
Tasks:
- The task list is available in Administration section.
Axidian Privilege User Console
User interface for accessing protected Axidian Privilege objects.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- Web application — uc
Tasks:
- The task list is available in User's Manual section.
Axidian Privilege Log Server
This is a uniform event log that collects and stores the Axidian Privilege events.
Environment:
- Windows Server 2016 – 2022 → Internet Information Services (IIS)
- Linux Web Server → Docker → Nginx Web Server
Consists of:
- Web application — ls
Tasks:
- Collecting, storing and issuing events.
Axidian Privilege EventLog
An add-on for Axidian Privilege Log Server.
Environment:
- Windows Server 2016 – 2022
Consists of:
- Files and Libraries for Log Server
Task:
- Implements event logging in Windows Event Log.
Access Server
Axidian Privilege Gateway
A set of components implementing jump server functions, session auditing tools and protection mechanisms.
Environment:
- Windows Server 2016 – 2022
Consists of:
- Windows desktop application — ProxyApp.exe
- File System Driver — Pam.FsFilter
- Windows service for interacting with a file system filter — Pam.Service
- Modified SSH Client — Putty.exe
- Extension for mstsc.exe
- A set of utilities and libraries — FFmpeg
- Process Control Libraries
Tasks:
- Providing access to target resource via the RDP/SSH/Telnet protocols and others in RemoteApp via RDS mode.
- Recording videos and screenshots, text interception and interception of transmitted files.
- Processing and saving session artifacts.
- Checking the status of client components.
- Process startup control, file system access control.
Axidian Privilege SSH Proxy
Proxy server for SSH sessions.
Environment:
- Linux → Docker
Consists of:
- Application — Pam.SshProxy.Service (Linux)
The component tasks are:
- Providing access via SSH/SCP/SFTP protocols
- Interception of text and transmitted files
- Processing and saving session artifacts.
Axidian PAM PostgreSQL Proxy
Proxy server for PostgreSQL sessions.
Environment:
- ОС Linux → Docker
Consists of:
- Application — Pam.PostgreSQLProxy.Service (Linux)
The component tasks are:
- Interception of the text of SQL queries launched by the user.
Axidian Privilege RDP Proxy
Proxy server for RDP sessions.
Environment:
- Linux → Docker
Consists of:
- Application — Pam.RdpProxy.Service (Linux)
The component tasks are:
- Providing access via RDP protocols
- Interception of text, video, screenshots and transmitted files
- Processing and saving session artifacts
Axidian Privilege ESSO Agent and Axidian Privilege Admin Pack
A set of components for implementing SSO access.
Environment:
- Windows Server 2016 – 2022
Consists of:
- A set of applications, services, and tools for interacting with authentication forms and Axidian Privilege components
- Extensions for Internet Explorer, Google Chrome, Microsoft Edge browsers
Tasks:
- Interception and autofill of authentication forms for web-based applications and Windows desktop applications
Windows Resources
Axidian Privilege Agent
The component is intended to capture text logs during RDP session.
Environment:
- Windows Server 2016 – 2022/Windows XP SP3 X64 – Windows 11
Consists of:
- Windows application — Pam.Proxy.WindowsAgent.exe
Tasks:
- Recording changes of active windows, process launches and keyboard input.
The Axidian Privilege Agent component is optional, as Axidian Privilege is a completely agentless solution. You can disable text logs in RDP sessions to work without Axidian Privilege Agent.
Linux Resources
PAMSU Component
A component for executing commands with root privilege. Use the pamsu command instead of the sudo. The difference is that authentication will be requested from the Axidian Privilege user, not from the privileged account on behalf of which the session was opened on the resource.
Environment:
- Linux
Consists of:
- .deb or .rpm packages
Tasks:
- Running elevated commands as a PAM user
The PAMSU component is optional, as Axidian Privilege is a completely agentless solution. You can disable pamsu feature in SSH sessions to work without PAMSU.
Linux distributions that support PamSU
The PamSU component runs on the following Linux OS versions:
- CentOS 7 and higher;
- Oracle Linux 7.9 and higher;
- Rocky Linux 8.8 and higher;
- Debian 10 and higher;
- Ubuntu 18 LTS and higher;
- Astra Linux Special Edition 1.7 and higher;
- Astra Linux Common Edition 2.12 and higher;
- RedOS 7.3 and higher;
- ALT Linux 8 and higher;
- Red Hat Enterprise Linux (RHEL) 6 and higher.
User's Workplace
Axidian Privilege Desktop Console
Additional tool for connecting to target resources via Axidian Privilege.
Consists of:
- Modified mRemoteNG utility
Tasks:
- The task list is available in User's Manual section.