ASG: Access Support Gateway
Typically, a multi-vendor large and complex IT system requires remote access to manage and support underlying infrastructure and software. However, in most of the deployment, customers can no longer see the work as it is being done. In fact, much of what the support engineer from different vendor did is never really known to the customer, because it cannot be observed. Hereby, it often requires to extend the logging and monitoring facilities of the access management server alongside centrally managing all accesses of support personnel from different vendors.
Access support gateway (ASG) is designed and developed mitigating these concerns. The primary job of ASG is to record SSH sessions and make the activities traceable so that customer can trace or map activities whenever requires. Sitting next to VPN router, it is centrally managing access with expiry window and acting as extended firewall for customers with precise profile-based access control to eliminate unauthorized access to sensitive IT systems.
It will allow users to see only allowed destination hosts which have been allowed per user’s profile and can block access on any unauthorized attempts. Besides blocking, it can also notify engineers of operations center on the unauthorized attempts or can also be integrated with central IT monitoring system with alerts. Users can be restricted by activity time by setting expiry for each access. Users can also be restricted to access systems with only allowed privilege and deny for unauthorized commands or activities.
All the recording will have traceable entries in searchable format so that system administrators from customer side can perform usage patterns & behavior analysis on commands or activities per user basis.
For more detail on ASG functionalities, we remain open at firstname.lastname@example.org