Customize PuTTY's Window Title

book

Article ID: 8180

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)

Issue/Introduction

Customer's use case:

UNIX user's default login shell is Bourne shell (sh) and single sign-on is not configured with SSH access in CA PAM (no predefined credentials are associated to the SSH access in policy).

 

PuTTY service is created in CA PAM (Services >> TCP/UDP Services) with 'C:\Program\PuTTY.exe -ssh <Local IP> <First Port>' defined as Client Application: 

<Please see attached file for image>

  • Bourne shell (sh) -- The PuTTY's Window Title displays only the local loopback address

    <Please see attached file for image>

  • Bourne-Again shell (bash) -- The PuTTY Window Title displays the local loopback address before user login and changes to <user>@<servername> after user login successfully

    <Please see attached file for image>


    <Please see attached file for image>


Environment

Release: PAMDKT99500-2.7-Privileged Access Manager-NSX API PROXY
Component:

Resolution

To customize the PuTTY's Window Title, it is achievable with following steps:

  1. PAM - Services >> TCP/UDP Services: 
    Create PuTTY service with 'C:\PuTTY\putty.exe -load <Device Name>' defined as Client Application

    <Please see attached file for image>

    src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6743-136187/pastedImage_1.png" alt="">
  2. PAM - Devices >> Manage Devices: 
    Create a new device or update the existing device and associate the PuTTY service to it

    <Please see attached file for image>

    src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6743-134624/pastedImage_4.png" alt="">
  3. PAM - Policy >> Manage Policies: 
    Create policy that link PAM user(s) with the device and associate the PuTTY service to it

    <Please see attached file for image>

    src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6743-134630/pastedImage_10.png" alt="">
  4. PuTTY: 
    Create a Saved Session in PuTTY with the name matching the Device Name in PAM -- specify your preferred Window Title at PuTTY Configuration >> Window >> Behaviour, enter the local IP and port (matching to the PuTTY service in CA PAM)
    [Note: If Device Name has space(s) within the string, please add double quotes around the Device Name in PAM]

    <Please see attached file for image>

    src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6743-136186/pastedImage_4.png" alt="">

    <Please see attached file for image>

    src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6743-134519/pastedImage_24.png" alt="">

Now when CA PAM calls PuTTY service, it is loading the saved session from PuTTY with it's customized Window Title:

<Please see attached file for image>

src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6743-136188/pastedImage_1.png" alt="">

[Note: If we use Target UNIX server's IP/ FQDN in PuTTY, session recording will not work. ]

 

Attachments

1558714257687000008180_sktwi1f5rjvs16tdt.png get_app
1558714255583000008180_sktwi1f5rjvs16tdr.png get_app
1558714253620000008180_sktwi1f5rjvs16tdq.png get_app
1558714251461000008180_sktwi1f5rjvs16tdp.png get_app
1558714249308000008180_sktwi1f5rjvs16tdo.png get_app
1558714247421000008180_sktwi1f5rjvs16tdn.png get_app
1558714245599000008180_sktwi1f5rjvs16tdm.png get_app
1558714243851000008180_sktwi1f5rjvs16tdl.png get_app
1558714241993000008180_sktwi1f5rjvs16tdk.png get_app