Main System Components
Ekran System is a software solution specially designed to remotely monitor and control user activity on endpoint Client machines.
The system includes the following main software application components:
• NOT AVAILABLE IN SAAS The Ekran System Application Server (further referred to as the Application Server or the Server): This is the main component of Ekran System which receives the monitored data (the screen captures and associated metadata) from Ekran System Clients, analyses the data (and generates alerts to potential security incidents), and stores it in the central database (with the third-party MS SQL or PostgreSQL databases supported). The Application server is also responsible for storing the configuration data, sending the update packages to Clients, performing database cleanup, and creating reports and corresponding statistics. The operation of the Application Server can be started or stopped by way of the Server Tray icon, which also includes the Database Parameters (DbSetupToolUI) application where the Ekran System Master Certificate can be reissued or moved, and the database parameters can be modified, etc.
• The Ekran System Management Tool (further referred to as the Management Tool): With a convenient web-based user interface, this is the central administrative console that allows you to view and analyze the monitored security data from Clients, as well as manage the Clients, users, USB monitoring rules, alerts, the database, serial keys, etc. You can access the Management Tool remotely using any computer in the network, without having to install it on that computer. The Management Tool includes the Session Viewer which provides a user-friendly interface for quick review of the monitored data received from Ekran System Clients, including playing back in the form of video the screen captures recorded in any selected Client session.
• Ekran System Clients (further referred to as Clients), installed on endpoints:
- Ekran System Windows Clients (further referred to as Windows Clients): Being hosted on remote computers, Windows Clients record screen captures with mouse movements in the form of video at the defined frequency, and send them to the Application Server along with metadata such as user name, host name, activity times, active window titles, application names, URLs, clipboard text data, keystrokes, etc. Managing the configuration and settings of the remote Windows Clients is performed by using the Management Tool.
- Ekran System macOS Clients (further referred to as macOS Clients): Being hosted on remote computers, macOS Clients record screen captures with mouse movements in the form of video at the defined frequency, and send them to the Application Server along with metadata such as user name, host name, activity times, active window titles, application names, etc. Managing the configuration and settings of the remote macOS Clients is performed by using the Management Tool.
- Ekran System Linux/Unix Clients including X Window System (further referred to as Linux Clients): Being hosted on remote computers, Linux Clients capture input/output terminal data (including all commands executed), and send this interactive data to the Application Server.
• NOT AVAILABLE IN SAAS The Ekran System Tray Notifications application (further referred to as the Tray Notifications application): This application allows notifications to be received from Clients about alert events on them.
• NOT AVAILABLE IN SAAS The Ekran System Master Panel (further referred to as the Master Panel): This additional stand-alone component of Ekran System is used for large-scale deployments in High-Availability mode, and combines the data from all the Ekran System Applications Servers instances on different nodes, allowing all the Client sessions to be viewed in a single user interface.
The Basic Deployment Scheme
Maximum visibility and control of any activity performed within an organization's infrastructure can be achieved by installing Clients of the corresponding type on each endpoint.
