IoT Operations Dashboard will be integrated with Cisco Customer Identity (CCI) for an improved and seamless login experience. Cisco Customer Identity (CCI) is an okta-based identity provider managed and used by Cisco. This integration of IoT OD with CCI provides enhanced secure authentication and enables users to navigate across multiple Cisco applications and websites with one set of login credentials ensuring seamless operation.
This Secure Equipment Access (SEA) feature allows the customer to record sessions for future use, such as auditing or educational purposes. Before using the feature, the customer must set up an integration with Amazon Web Services (AWS) S3 bucket. The recorded MP4 video files are stored on AWS S3 and access to the recordings is provided through the SEA User Interface.
IMPORTANT: The SEA Service no longer recognizes the Device Operator role. To utilize SEA functionality, you must have one of the following designated SEA roles with the associated privileges:
SEA System Admin
SEA Access Admin
August 29, 2023
There are no new features for this release.
Using SEA with VNC access method: If using VNC servers that require username or encryption such as RealVNC, disable them for SEA to work. An alternative: Use SEA Plus to forward the VNC port with a local and native client that supports usernames and encryption.
August 2, 2023
SEA Plus with Multi-protocol support
The protocol definition allows the SEA System Admin to define specifically which protocols, ports, or port ranges the user will be able to use to connect to the remote system.
Active SEA sessions monitoring and session termination, upon demand
Monitor SEA active sessions and immediately join active SSH, VNC, RDP, and Telnet sessions or terminate an active session, upon demand, providing security control to the OT infrastructure. Monitor SEA active sessions and immediately join active SSH, VNC, RDP, and Telnet sessions or terminate an active session, upon demand, providing security control to the OT infrastructure.
SEA-enforced host security posture assessment through Duo
Duo integration capability brings flexibility in configuring any Duo policy on the side of the Duo account and enforcing it for SEA Plus sessions. Currently, the focus is exclusively on the host security posture.
The SEA Plus App provides greater flexibility and security. You can use multiple access methods and any IP protocol through a secure channel and transfer files back on forth through the channel. The Access Methods available are: * SSH * RDP * VNC * Web App * Telnet * SEA Plus
EA roles are now hierarchical. SEA System Admin role has full access to everything in SEA. SEA Access Admin role can create/configure access groups and launch remote sessions. SEA User is restricted to launching remote sessions.
New SEA Agent to support SEA Plus functionality. You must upgrade the SEA Agent to v0.65 to use SEA Plus.
Multiple errors are displayed in SEA when the user doesn't have the required roles to access SEA.
August 10, 2022
External Equipment Management
You can now open a remote session for equipment directly from the Edge Device Manager (EDM) map-based dashboard.
External Equipment Management now lets users manage devices that are connected to another device. For example, a camera management server can be used to configure and manage the cameras attached to that server.
Use SEA to remotely access and interact with both the gateways and connected devices. This can be used to directly troubleshoot, or monitor the IoT devices in your deployment. Note: The Secure Equipment Access feature is provided as a free trial promotion until December 31, 2022. Please read and understand Section 2.3 of the EULA before using this feature. Contact TAC support to enable this feature.