Remote Sessions Configurations

Install the SEA agent on industrial routers

Use this procedure when you need to deploy or update the SEA agent on iindustrial routers managed through the IoT OD Application Manager service. Installing the agent enables SEA service on industrial routers..

Before you begin

Ensure the industrial router is added to the IoT OD Application Manager service.

Procedure

Step 1

Navigate to Secure Equipment Access > Quick Wizard on the Cisco IoT Operations Dashboard.

Step 2

Under Install SEA Agent, click Start Configuration.

All network devices added to the App Manager Service appear under the Select Network Device area.

Step 3

Select the device on which you want to install the SEA agent, and click Next.

The Advanced Configuration page displays the default installation settings.

Step 4

Click Deploy.

The SEA agent is successfully deployed on the selected industrial router, enabling Secure Equipment Access (SEA) services for that device..

What to do next

Verify the agent’s status in the SEA Agent Connection column on the System Management page. Allow 5–10 minutes for the deployment to complete before verifying the status.

Configure remote sessions

Set up OT sessions using Secure Equipment Access (SEA) so authorized users can manage operational technology (OT) assets remotely.

Before you begin

Ensure the following:

  • SEA agent is installed on the industrial router associated with the OT assets you want to manage.

  • An access group is created, and both users and the configured remote session are added to the group.


    Note

    Only users in the group can remotely access OT assets.

Procedure

Step 1

Navigate to Secure Equipment Access > Quick Wizard.

Step 2

Under Connect to Asset, click Start Configuration.

All network devices added to the App Manager Service appear under the Select Network Device area.

Step 3

Select a industrial routerfrom the list and then click Next.

The OT asset you configure in the next step will be associated with this device.

Step 4

To configure an OT asset, in the Configure Connected Asset area, enter the required details, and click Next:

  • Asset Name: Name of the assets to be added.

  • IP Address: IP address of the asset.

  • Description: A brief description of the asset.

Step 5

To configure an access method, complete these steps:

  1. Select an access method from the Choose Access Method drop-down list.

    An SEA user can access the asset by using the access method you select. The available options are RDP, SSH, Telnet, VNC, and Web App. Depending on the access method you select, additional fields are populated.

  2. Select an access control group from the Assign to an Access Control Group drop-down list and click Finish.

    Only users who are added to the access control group can remotely access the assets within the group.

Step 6

To test the remote connection, click Test Access Method, then click Done

The configured remote sessions appear on the Remote Sessions page.

What to do next

Log in to the Cisco IoT Operations Dashboard to access the remote session.

Connect to remote assets

Enable secure access to remote assets for monitoring, management, or troubleshooting.

Use this task when you need to initiate a remote session with your OT assets to perform any maintenance operations.

Follow these steps to connect to remote assets:

Before you begin

  • Obtain SEA user credentials with the necessary permissions.

  • Verify that your network connection allows access to the IoT Operations Dashboard.

  • Ensure a valid remote session is configured by the SEA administrators.

Procedure

Step 1

Log in to the Cisco IoT Operations Dashboard as an SEA user.

Step 2

Click Secure Equipment Access > Remote Sessions.

Step 3

Go to the desire session and click Connect.

You are securely connected to the selected remote asset using the preconfigured access method. You can now monitor, manage, or troubleshoot the asset as required.

What to do next

Log out of your session when finished to maintain system security.