Getting Started

This section explains the SSH+ management workflow as seen on the Get Started page:

Onboarding Users

AppViewX offers comprehensive support for Role and Resource-Based Access Control (RBAC). RBAC is a method of restricting AppViewX functions, and managing and monitoring network resources in AppViewX based on the roles of individual users within an enterprise. It allows you to integrate with the existing identity stores such as Active Directory (AD) and Lightweight Directory Access Protocol (LDAP) to enforce authorization policies. Roles and resources can be customized to suit any organizational structure and user requirements.

For more information on configuring role and RBAC, refer to the Section, Configuring Role and Resource-Based Access Control (RBAC) in the Platform Guide.

Discovery and Visibility

You can gain full visibility of SSH user and host keys by discovering them within your network infrastructure.

  • Discover Hosts and Keys from IP network: You can discover user or/and host keys configured on your server by creating and running scans on your network using IP address or subnet. The Discovery scans your network (on the default SSH enabled port 22) for SSH keys configured on your server. You can map the discovered keys to the selected key compliance groups and manage/monitor them.

    Clicking this link takes you to the Discovery page. See Using IP Range Option.

  • Risk Report Dashboard: The risk reports are generated based on user and host configuration, key usage, and access requests once the discovery is complete. This information can help identify potential security risks, compliance issues, or other areas for improvement.

    Clicking this link takes you to the Dashboard page. See Reports.

  • User Key Inventory: You can see the total number of weak, shared, orphan, and suspicious keys in the key discovery status. Click the number hyperlink to drill down on the metrics. This helps you track the progress of the key discovery efforts, identify any potential security risks, and prioritize the remediation actions.

    Clicking this link takes you to the Key Inventory page. See Viewing User/Host Key Inventory.

  • Host Key Inventory: You can see the total number of weak and shared keys in the key discovery status. Click the number hyperlink to drill down on the metrics. This helps you track the progress of the key discovery efforts, identify any potential security risks, and prioritize the remediation actions.

    Clicking this link takes you to the Key Inventory page. See Viewing User/Host Key Inventory.

Access Management

You can ensure secure access control and authorization within your network infrastructure.

  • Onboard AWS Hosts: Clicking this link takes you to the Device Management > Device :: Cloud page. See Adding Cloud.
  • Host onboarding settings: Clicking this link takes you to the Host Inventory page. See Adding Host.
  • Manage Host Access Groups: Clicking this link takes you to the Infra Access Groups page. See Adding Infra Access Group.
  • Request Access: Clicking this link takes you to the Access Control page. See Accessing Requests

Compliance

You can use key policies for configuring key rotation to ensure secure and standardized key management practices.

  • Configure Key Compliance Policy: Clicking this link takes you to the Key Policy page. See Key Policy.
  • Configure Host Configuration Policy: Clicking this link takes you to the Host Policy page. See Creating Host Policy.

Additional Settings

  • Onboard Network Hosts: Clicking this link takes you to the Device Management > Device :: Server page. See Adding Server.