Fortinet black logo

Administration Guide

Home FortiPAM 1.1.2 Administration Guide
1.1.2
1.3.0
1.2.0
1.1.2
1.1.1
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0

Launching a secret

Launching a secret

To launch a secret:
  1. Go to Secrets > Secret List.
  2. In the Secrets List, double-click a secret to open.

    Alternatively, in Secrets > Personal Folder/Public Folder, go to the folder where the secret is located, and double-click the secret to open.

    If the secret does not show up, it may be because you do not have the necessary permission to access the secret or the folder where the secret is located.

  3. Click Launch Secret.

    The Launch Progress window opens.

  4. From the list, select a launcher, and select Launch.

    Chrome, Edge and Firefox have extensions to support video recording for browser based launchers.

    AWS does not work with Web SSH.

    When using file launchers, the following two security features can be enabled in a secret:

    Note: Examples of a file launcher include WinSCP, Web SMB, and Web SFTP.

    1. By assigning an antivirus profile to a secret, the user can be protected from downloading viruses and the server can be protected from virus being uploaded. See the Antivirus Scan option in Creating a policy and Creating a secret. Also, see AntiVirus.
    2. By assigning a DLP sensor to a secret, the server can be protected from sensitive information being uploaded and downloaded from the server. See Data loss prevention (DLP) protection for secrets.
  5. After the session is finished, close the launcher.

See Check out and check in a secret.

Blocklist and allowlist for RDP target IP address restriction

When launching a secret with the Windows Domain Account template, you can input any IP address as the target secret.

Blocklist and allowlist can help you to improve security by allowing preconfigured IP addresses.

See the Target Filter option in the Permission pane in Creating a secret.

Previous
Next

Launching a secret

To launch a secret:
  1. Go to Secrets > Secret List.
  2. In the Secrets List, double-click a secret to open.

    Alternatively, in Secrets > Personal Folder/Public Folder, go to the folder where the secret is located, and double-click the secret to open.

    If the secret does not show up, it may be because you do not have the necessary permission to access the secret or the folder where the secret is located.

  3. Click Launch Secret.

    The Launch Progress window opens.

  4. From the list, select a launcher, and select Launch.

    Chrome, Edge and Firefox have extensions to support video recording for browser based launchers.

    AWS does not work with Web SSH.

    When using file launchers, the following two security features can be enabled in a secret:

    Note: Examples of a file launcher include WinSCP, Web SMB, and Web SFTP.

    1. By assigning an antivirus profile to a secret, the user can be protected from downloading viruses and the server can be protected from virus being uploaded. See the Antivirus Scan option in Creating a policy and Creating a secret. Also, see AntiVirus.
    2. By assigning a DLP sensor to a secret, the server can be protected from sensitive information being uploaded and downloaded from the server. See Data loss prevention (DLP) protection for secrets.
  5. After the session is finished, close the launcher.

See Check out and check in a secret.

Blocklist and allowlist for RDP target IP address restriction

When launching a secret with the Windows Domain Account template, you can input any IP address as the target secret.

Blocklist and allowlist can help you to improve security by allowing preconfigured IP addresses.

See the Target Filter option in the Permission pane in Creating a secret.

Previous
Next