Red Hat Training
A Red Hat training course is available for RHEL 8
Chapter 2. Deploying Session Recording on RHEL web console
This section describes how to deploy the Session Recording solution on the Red Hat Enterprise Linux web console.
To be able to deploy the Session Recording solution you need to have the following packages installed:
-
tlog - SSSD
-
cockpit-session-recording
2.1. Installing tlog
Install the tlog packages.
Procedure
Use the following command:
# yum install tlog
2.2. Installing cockpit-session-recording
The basic web console packages are a part of Red Hat Enterprise Linux 8 by default. To be able to use the Session Recording solution, you have to install the cockpit-session-recording packages and start or enable the web console on your system:
Procedure
Install
cockpit-session-recording.# yum install cockpit-session-recording
Start or enable the web console on your system:
# systemctl start cockpit.socket # systemctl enable cockpit.socket
or
# systemctl enable cockpit.socket --now
2.3. Enabling session recording for users and groups with SSSD from the CLI
If you use SSSD for authentication, you can configure session recording for users and groups from the command line.
Procedure
Open the
sssd-session-recording.confconfiguration file:# vi /etc/sssd/conf.d/sssd-session-recording.conf
NoteThe
sssd-session-recording.conffile is created automatically once you have opened the configuration page in the web console interface.- To specify the scope of session recording, enter one of the following values for the scope option:
-
noneto record no sessions. -
someto record only specified sessions. allto record all sessions.-
(Optional) If you set the scope as
someadd the names of users and groups in comma-separated lists.
-
(Optional) If you set the scope as
Example 2.1. SSSD configuration
In the following example users example1 and example2, and group examples have session recording enabled.
[session_recording] scope = some users = example1, example2 groups = examples
2.4. Enabling session recording for users and groups with SSSD from the web UI
If you use SSSD for authentication, you can configure session recording for users and groups in the RHEL 8 web console.
Procedure
-
Connect to the RHEL 8 web console locally by entering
localhost:9090or by entering your IP address<IP_ADDRESS>:9090into your browser. Log in to the RHEL 8 web console.
ImportantYour user has to have administrator privileges to be able to view recorded sessions.
- Go to the Session Recording page in the menu on the left.
Click on the gear button in the right top corner.
Set your parameters in the SSSD Configuration table. Separate the lists of users and groups with commas.
Example 2.2. Configuration of recorded users with SSSD
2.5. Enabling session recording for users without SSSD
Red Hat does not recommend this option. The preferred option is to configure your recorded users via SSSD either from the command-line interface or directly from the RHEL 8 web console.
If you choose to manually change the user’s shell, their working shell will be the one that is listed in the tlog-rec-session.conf configuration file.
If you do not want to use SSSD for specifying recorded user or user groups it is possible to directly change the shell of the user you want to record to /usr/bin/tlog-rec-session:
Change the shell.
# sudo usermod -s /usr/bin/tlog-rec-session <user_name>
2.6. Exporting recorded sessions to a file
You can export your recorded sessions and their logs and copy them.
The following procedure shows how to export recorded sessions on a local system.
Prerequisites
Install the
systemd-journal-remotepackage.# yum install systemd-journal-remote
Procedure
Create a directory to store exported recording sessions, such as `/tmp/dir:
# mkdir /tmp/dir
Run the
journalctl -o exportcommand to export system journal entries related to tlog recordings:# journalctl _COMM=tlog-rec _COMM=tlog-rec-sessio -o export | /usr/lib/systemd/systemd-journal-remote -o /tmp/dir/example.journal -
NoteThe
COMM=tlog-rec-sessioCOMM name is shortened due to a 15 character limit.
