HomeDocumentationAPI Reference
Log In
These docs are for v16. Click to read the latest docs for v33.

Connectivity

Suggest Edits

What type of targets can be accessed through PrivX and how?

HTTPS Web Access (Web based dashboards/network appliances/applications)
• PrivX GUI

Windows/Linux RDP Access
• Via PrivX GUI
• Via native client in Bastion mode

SSH Access
• Via PrivX GUI
• Via native client in Bastion mode
• Via PrivX agent

What limitations do the native clients have? (SSH/RDP)
• SSH/RDP native clients work with (AD/LDAP/local) accounts, but not with OpenIDC accounts.
• MFA works with both SSH/RDP native clients with AD/LDAP accounts, but not with local accounts. MFA (if configured) is required every time on every connection to the PrivX GUI.
• Target accounts with type Directory are not accessible via RDP native clients.
See Connection method vs feature matrix for more info.

What limitations are there when using the agent? (connections do NOT pass through PrivX)
As per previous native-client limitations and in addition to the following:
• Session recording is not possible with Agent connections.
• Agent-based connection do not show at all in connection list.
• Audit events for agent-based authentication show certificate-request/role-granted/cert-issued, however there is no data on the target host or user.

Updated about 3 years ago