Distributed Processing Appliance

Appliance Overview:

e-DMZ Security’s Distributed Processing Appliance (DPA) is an add-on appliance designed to support distributed architecture deployment requirements for the Total Privileged Access Management (TPAM) suite.

DPA Deployment: As reflected in the diagram below, optional DPA(s) can be added to an existing PAR and/or eGuardPost deployment to distribute various processing functions to better support widely distributed architectures

Distributed Processing: The distributed processing features provided by the DPA depend on the TPAM modules enabled on the primary PAR/eGuardPost appliance. DPA supports distributed process options for the Privileged Password Management (PPM) and Privileged Session Management (PSM) modules. The distributed functions provided through the DPA(s) can support local processing for: Password Checks; Password Change; Session Proxy; Session Recording; Recording Archive.

Each DPA is able to support up to 150 concurrent PSM sessions providing unlimited session management and recording scalability.

Reduced Port Requirements: Because the DPA is deployed locally — WAN based port requirements for TPAM deployment are limited to SSH only. Distributed PPM features (i.e. Password Check/Change) are processed via an SSH connection between the Primary PAR/eGuardPost appliance and associated DPA. Distributed PSM features (Session Proxy) are established through and SSH connection between the user and associated DPA. All target device connections are established by the associated local DPA over the LAN.