Get Started!

Remote Session as Windows or Unix Screen in an HTML5 Browser

XtonTech Xton Technologies Privileged Account and Access Management Session Management Identity Vault

Session Management as a secure network gateway

This article discusses deployment architecture and benefits of agentless universal remote desktop and shell access. At its heart it is an RDP, SSH and VNC gateway to HTML5 that transmits its data over HTTPS protocol. We call it Session Manager. The other literature sometimes call it a Jump Server. For the end user agentless Session Manager looks like a Windows desktop inside a modern browser: no applets, no ActiveXs, not even Remote Desktop or terminal software is required on the client computers. Everything is completely agentless.

Privileged Windows session using Remote Desktop via a web browser (recording)

Windows session rendered by Google Chrome on Mac OS

It could also be a Unix screen or a router shell.

Privileged Unix session using Shell via a web browser (recording)

Unix session rendered in Google Chrome on Mac OS

Since the only software requirement for the client device is the browser, the installation and the maintenance of the software is easy. The software is deployed on the server once and stays here. There is no need to do any special maintenance at the end points (which could be numerous and remote). Users can use Session Manager from the secure locked down or mobile devices such as browser based terminals like Chromebooks.

Architecture of RDP, SSH, VNC Gateway to HTML5

The server part of an agentless Session Manager is a gateway, not a proxy (proxy inputs and outputs the same protocol). The gateway translates RDP, SSH or VNC protocols to interactive HTML5 graphics. On one side of the server, a client accesses gateway using secure HTTPS protocol. It eliminates the need to open RDP or SSH ports in the firewall or setup a VPN to provide access to computers behind the firewall. All traffic between clients and hosts flows through the secure and manageable HTTPS connection.

On the other side of the same server, the gateway is completely aware about high level RDP, SSH and VNC communication protocols. Inside its logic the gateway operates with user keystrokes and images, files and texts, mouse clicks and clipboards, not with low level TCP/IP traffic which is hard if ever possible to reconstruct into its original semantics. This inherent gateway function allows the Session Manager to implement business level features like session recording and keystrokes filtering, whitelisting and user substitution as well as many other options that will be available in the future.

Agentless Session Manager Architecture

Session Manager Integration with an Identity Vault

And there is even more. Session Manager could be integrated with powerful Identity Vault that, among other things, can store and share records about devices and their accounts with passwords, access keys or certificates. The identity vault allows the Gateway to establish connection to Windows or Unix computers without disclosing passwords to the end user. In addition to that, the vault monitors, shares, logs sessions for auditing purposes, enables search and analyses session related events and even correlates them with other account events that happen in the system.

About us

Xton Technologies builds, markets and distributes enterprise privileged accounts management software including identity vault that enables permission based sharing of secret information like passwords and security certificates for employees, contractors and scripts, policy driven password reset and centralized script execution for Windows, Unix and IoT devices as well as provides agentless access to network resources without disclosing passwords or keys to end users capable to record and monitor RDP, VNC or SSH sessions.

Download Today!

Xton Access Manager is an unlimited, agentless, cross-platform privileged access management solution built from the ground up with an enterprise feature set. Simple to implement, without your typical enterprise cost and effort.

Xton Access Manager is now available for download. Please fill out this form to receive a download link to get started today, even on your current desktop or laptop. Documentation is available to help or you can email or call us to request a trial extension, discuss questions and share your feedback. We would love to talk to you.

Please fill out the form below to download Xton Access Manager.

What interests you most about Xton Access Manager?

Trial registration may take up to 30 seconds to complete. Please do not Refresh this page after submitting.

Categories: xton

Mark Klinchin

I am Co-Founder and CEO of Xton Technologies. I am interested in computers, software development, cyber security, content management, photography, image processing and mathematics.

2 Comments

Database for Secrets Explained | Xton Technologies · July 24, 2017 at 2:49 pm

[…] in combination with RDP/SSH Gateway, Database for Secrets can provide access to certain computers and devices without even disclosing […]

Four methods to access cloud computers securely | Xton Technologies · August 2, 2017 at 6:19 pm

[…] Xton Technologies: Session Manager as a Secure Network Gateway […]

Comments are closed.

Related Posts

xton

KuppingerCole Analyst Executive View of XTAM

As Xton Access Manager (XTAM) continues to grow in the Privileged Account Management space we are briefing popular analyst firms such as Gartner, KuppingerCole, Forrester and others about our capabilities and product roadmap.  If you Read more…

xton

Load Balancer Configuration for Apache HTTP Server with Sticky Sessions

This article discusses the details of the Apache HTTP Server Load Balancer configuration to serve as a front end for two XTAM nodes with sticky sessions options enabled. Please refer to the diagram for the Read more…

xton

XTAM Search Query Options

Xton Access Manager (XTAM) can quickly find records that match XTAM search criteria. By default, XTAM search query finds records by record name, description and a host name on a record. However, XTAM also uses Read more…

Copyright © 2019 Xton Technologies, LLC. All rights reserved.