Before You Start

This document provides instructions for getting started with Cloud Bastion Host (CBH). CBH gives you the ability to:

Log in to the CBH system using a web browser or SSH client, create system users, add resources, configure permission policies, and grant O&M permissions to users based on their duties.
Log in to the managed resources within granted permissions through the CBH system.
Audit O&M sessions, logins, and system operations based on resources and/or users.

Figure 1 shows how to configure a CBH instance and use the mapped CBH system for secure O&M.

Figure 1 Process

**Table 1** Process overview
Procedure	Description
Logging in to a CBH system	After purchasing a CBH instance, you need to obtain the IP address to log in to the CBH system that maps to the CBH instance. The admin user is the first user that can be used to log in to the CBH system. The password of the admin user is the one you set during purchasing the CBH instance.
Creating a user	Create a CBH system user. Each user corresponds to a CBH system login account.
Adding resources	Add resources and their accounts. Linux hosts, Windows hosts, databases, and application systems can be added. After resources are added, add the accounts of the added resources for automatic login.
Configuring O&M permissions	Create access control rules. Users can perform O&M operations on resources only after they are authorized to access the resources.
Logging in to a managed resource	Users can log in to the authorized resources within their permissions through the CBH system. Different login methods can be used for different resource types.
Auditing O&M sessions	Audit logins, operations on managed resources, and O&M sessions in the CBH system.

Did this article solve your problem?

Thank you for your score！Your feedback would help us improve the website.

Help Center