Privileged Remote Access

Remote Access Service (RAS) is now Privileged Remote Access (PRA).

Delinea Privileged Remote Access (PRA) provides seamless access to remote machines through RDP (Remote Desktop Protocol) and SSH (Secure Socket Shell), without the need for a VPN (Virtual Private Network).

Delinea PRA runs on the Delinea Platform and seamlessly integrates with Delinea Secret Server vault, deployed from the cloud or from within your private network. PRA automatically uses credentials to connect with target resources, enabling RDP and SSH connectivity without exposing sensitive parts of credentials to the end user. The PRA workflow is completely integrated into the Delinea Platform UI.

Delinea PRA displays RDP and SSH sessions in the user's web browser, freeing users from the need to install and maintain additional remote access or VPN software. This architecture also makes PRA extremely portable, enabling the user to access multiple connections to multiple target systems, each running in its own tab in the user's browser.

The Delinea PRA service runs in the Delinea cloud. Without using a VPN, it enables connectivity to target systems using the Delinea PRA Engine. This engine has a small footprint and runs on a variety of Linux distributions in your data center. PRA Engines connect outbound traffic from your data center to the Delinea cloud using Transport Layer Security (TLS) over HTTP/S. This technique eliminates the need for a VPN and protects your data center from exposing any system. In this way, Delinea PRA limits threats like port scans and similar malware.

PRA Sites logically group together engines that can facilitate connections to a common set of target resources. You can add multiple engines at each site for redundancy and high availability. For more information, see Set Up a PRA Engines Site.

When a user requests a connection to a remote resource, they connect to the Delinea Platform first with their browser using TLS over HTTP/S. Delinea PRA then connects the user with the PRA engine, providing end-to-end protection from the user’s browser to the PRA Engine. The PRA engine is also used to integrate on-premises Secret Server installations to the Delinea Platform.

PRA Engines can usually be deployed in a few minutes and can be managed from the Delinea Platform UI. Updates are delivered from the platform on demand, without interrupting existing user sessions. Engine updates usually take just a few seconds, so you can keep your engines at peak performance and up to date with no downtime.

For additional security, PRA sessions can be configured to be viewed in nearly real time and recorded for security auditing.

Continue to Setting Up PRA.