FortiPAM
FortiPAM allows you to protect, isolate and secure privileged account credentials, manage and control privileged user access, and monitor and record privileged account activity.
rbraha
Staff
Staff
Article Id 357145
Description

 

This article describes how to access Windows when launching a secret in FortiPAM using TightVNC application.

 

Scope

 

FortiPAM.

 

Solution

 

FortiPAM supports connections to VNC servers on various platforms ,like Windows, Linux or MacOS.

 

In this scenario, TightVNC is used to access a Windows machine .

 

Launching a secret for Windows needs only the Target and Password fields.

 

  1. Create a new Template for TightVNC, specifying only Target-Address and Password on the Fields section.

 

    In the launcher section, select TightVNC launcher with default port 5900. Additionally, set up Permissions for which user can launch this secret.

 

Figure 1. Creating an TemplateFigure 1. Creating an Template

 

  1. Go to Secret -> Secret List to create a new Secret.

 

     Select the Template created before and specify Target and Password.

 

Figure 2. Creating secretFigure 2. Creating secret

 

Make sure that TightVNC Server and Viewer are installed correctly and accept incoming connections on port 5900.

 

VNC authentication should be enabled and other configuration should remain as default.

 

Figure 3. TighVNC Server and ViewerFigure 3. TighVNC Server and Viewer

 

Launching secret using TightVNC launcher will show successfully connected to Windows machine.

 

Figure 4. Launching TightVNC secretFigure 4. Launching TightVNC secret

 

Troubleshooting commands needed in case of errors:

 

diag wad debug enable category secret

diag wad debug enable category vnc

diag wad debug enable level verbose

diag debug enable