Dieser Inhalt ist in der von Ihnen ausgewählten Sprache nicht verfügbar.
Chapter 2. Deploying Session Recording on RHEL web console
This section describes how to deploy the Session Recording solution on the Red Hat Enterprise Linux web console.
To be able to deploy the Session Recording solution you need to have the following packages installed:
-
tlog
- SSSD
-
cockpit-session-recording
2.1. Installing tlog
Install the tlog
packages.
Procedure
Use the following command:
# yum install tlog
2.2. Installing cockpit-session-recording
The basic web console packages are a part of Red Hat Enterprise Linux 8 by default. To be able to use the Session Recording solution, you have to install the cockpit-session-recording
packages and start or enable the web console on your system:
Procedure
Install
cockpit-session-recording
.# yum install cockpit-session-recording
Start or enable the web console on your system:
# systemctl start cockpit.socket # systemctl enable cockpit.socket
or
# systemctl enable cockpit.socket --now
2.3. Enabling session recording for users and groups with SSSD from the CLI
If you use SSSD for authentication, you can configure session recording for users and groups from the command line.
Procedure
Open the
sssd-session-recording.conf
configuration file:# vi /etc/sssd/conf.d/sssd-session-recording.conf
NoteThe
sssd-session-recording.conf
file is created automatically once you have opened the configuration page in the web console interface.To specify the scope of session recording, enter one of the following values for the scope option:
-
none
to record no sessions. -
some
to record only specified sessions. -
all
to record all sessions.
-
-
Optional: If you set the scope as
some
add the names of users and groups in comma-separated lists. To enable the SSSD profile, run the following command:
# authselect select sssd with-files-domain
Example 2.1. SSSD configuration
In the following example users example1
and example2
, and group examples
have session recording enabled.
[session_recording] scope = some users = example1, example2 groups = examples
2.4. Enabling session recording for users and groups with SSSD from the web UI
If you use SSSD for authentication, you can configure session recording for users and groups in the RHEL 8 web console.
Procedure
-
Connect to the RHEL 8 web console locally by entering
localhost:9090
or by entering your IP address<IP_ADDRESS>:9090
into your browser. Log in to the RHEL 8 web console.
ImportantYour user has to have administrator privileges to be able to view recorded sessions.
- Go to the Session Recording page in the menu on the left.
Click on the gear button in the right top corner.
Set your parameters in the SSSD Configuration table. Separate the lists of users and groups with commas.
Example 2.2. Configuration of recorded users with SSSD
2.5. Enabling session recording for users without SSSD
Red Hat does not recommend this option. The preferred option is to configure your recorded users via SSSD either from the command-line interface or directly from the RHEL 8 web console.
If you choose to manually change the user’s shell, their working shell will be the one that is listed in the tlog-rec-session.conf
configuration file.
If you do not want to use SSSD for specifying recorded user or user groups it is possible to directly change the shell of the user you want to record to /usr/bin/tlog-rec-session
:
Change the shell.
# sudo usermod -s /usr/bin/tlog-rec-session <user_name>
2.6. Exporting recorded sessions to a file
You can export your recorded sessions and their logs and copy them.
The following procedure shows how to export recorded sessions on a local system.
Prerequisites
Install the
systemd-journal-remote
package.# yum install systemd-journal-remote
Procedure
Create a directory to store exported recording sessions, such as `/tmp/dir:
# mkdir /tmp/dir
Run the
journalctl -o export
command to export system journal entries related to tlog recordings:# journalctl _COMM=tlog-rec _COMM=tlog-rec-sessio -o export | /usr/lib/systemd/systemd-journal-remote -o /tmp/dir/example.journal -
NoteThe
COMM=tlog-rec-sessio
COMM name is shortened due to a 15 character limit.