Cloud Bastion Host
Contact Sales

Cloud Bastion Host (CBH)

Cloud Bastion Host (CBH)

Cloud Bastion Host (CBH) manages servers and permissions, audits O&M actions, and authenticates identity. It also enables remote O&M anytime, anywhere, and using mainstream browsers like Google Chrome.

Cloud Bastion Host (CBH) manages servers and permissions, audits O&M actions, and authenticates identity. It also enables remote O&M anytime, anywhere, and using mainstream browsers like Google Chrome.

[Quick Start]

Accessing a CBH System Through a Web Browser

[Quick Start]

Configuring a Login Security Lock for CBH

[Quick Start]

Creating a User and Granting a Role to the User

[Quick Start]

Configuring MFA for CBH

[Quick Start]

Accessing a CBH System Through a Web Browser

[Quick Start]

Configuring a Login Security Lock for CBH

[Quick Start]

Creating a User and Granting a Role to the User

[Quick Start]

Configuring MFA for CBH

Application Scenarios

CBH is a good choice no matter how many O&M employees you have, how many assets you want to manage, and whether you outsource part of your O&M work.

Audit Compliance

CBH gives you the ability to use a single point of entry to manage accounts and resources, grant permissions by department, configure multi-level review for sensitive operations and operations on mission-critical assets. With CBH, you can establish a sound O&M audit system, making it easier for you to comply with regulatory requirements no matter what industry you are in and no matter how strict the requirements are.

Efficient O&M

During remote O&M, CBH hides actual IP addresses so the details of remotely managed assets can be kept secure. CBH provides comprehensive O&M logs so that you can effectively monitor and audit the operations of O&M personnel both inside and outside of your organization, reducing network security incidents and keeping service systems stable.

Security Management

CBH provides a system for you to securely manage a large number of O&M accounts and resources and to quickly log in to managed resources by using single sign-on (SSO) tools. CBH uses fine-grained permissions control. All operations on a managed resource are recorded and operations of all O&M staff are auditable. Any O&M incidents are traceable, making it easier to locate the operators.

Learn More

CBH Specifications

CBH provides standard and professional editions. Each edition provides specifications for 100, 200, 500, 1000, 2000, and 5,000 assets. The standard edition also provides a 50-asset specification.

Terms & Conditions

Target: Huawei's cloud e-marketing customers and channel partner customers can participate in the activity of providing full consumption. Please consult the customer manager before other customers participate

Time: August 12, 2020 to September 11, 2020

During the event, Huawei Cloud users purchase cloud services through the event page, or use cloud gift package coupons to purchase new cloud services on Huawei Cloud's official website. When the cumulative amount of paid in payment for new purchases reaches a certain amount, they can redeem corresponding physical gifts. Event coupons can be obtained by means of "cloud gift package" on the activity page, and the amount paid for orders directly purchased on Huawei Cloud official website (without using the mid year Cloud Juhui event coupon) or participating in other activities is not included in the statistical range;

Target: Huawei's cloud e-marketing customers and channel partner customers can participate in the activity of providing full consumption. Please consult the customer manager before other customers participate

Target: Huawei's cloud e-marketing customers and channel partner customers can participate in the activity of providing full consumption. Please consult the customer manager before other customers participate

Time: August 12, 2020 to September 11, 2020

During the event, Huawei Cloud users purchase cloud services through the event page, or use cloud gift package coupons to purchase new cloud services on Huawei Cloud's official website. When the cumulative amount of paid in payment for new purchases reaches a certain amount, they can redeem corresponding physical gifts. Event coupons can be obtained by means of "cloud gift package" on the activity page, and the amount paid for orders directly purchased on Huawei Cloud official website (without using the mid year Cloud Juhui event coupon) or participating in other activities is not included in the statistical range;

Target: Huawei's cloud e-marketing customers and channel partner customers can participate in the activity of providing full consumption. Please consult the customer manager before other customers participate

Target: Huawei's cloud e-marketing customers and channel partner customers can participate in the activity of providing full consumption. Please consult the customer manager before other customers participate

Time: August 12, 2020 to September 11, 2020

During the event, Huawei Cloud users purchase cloud services through the event page, or use cloud gift package coupons to purchase new cloud services on Huawei Cloud's official website. When the cumulative amount of paid in payment for new purchases reaches a certain amount, they can redeem corresponding physical gifts. Event coupons can be obtained by means of "cloud gift package" on the activity page, and the amount paid for orders directly purchased on Huawei Cloud official website (without using the mid year Cloud Juhui event coupon) or participating in other activities is not included in the statistical range;

Target: Huawei's cloud e-marketing customers and channel partner customers can participate in the activity of providing full consumption. Please consult the customer manager before other customers participate

OK

Specifications

50 assets

100 assets

200 assets

500 assets

1000 assets

2000 assets

5000 assets

Max. concurrent connections

fifty

one hundred

two hundred

two hundred

five hundred

1,500

2,000

CPU

4 cores

4 cores

4 cores

8 cores

8 cores

8 cores

8 cores

Memory

8 GB

8 GB

8 GB

16 GB

16 GB

16 GB

16 GB

System disk

100 GB

100 GB

100 GB

100 GB

100 GB

100 GB

100 GB

Memory disk

500 GB

1,000 GB

1,000 GB

2,000 GB

2,000 GB

2,000 GB

2,000 GB

Standard edition functions 

Supported

Supported

Supported

Supported

Supported

Supported

Supported

Professional edition functions

Not supported

Supported

Supported

Supported

Supported

Supported

Supported

Standard edition prices

1 year: Save 17%.

$8,000

USD/Year
Buy Now

1 year: Save 17%.

$12,000

USD/Year
Buy Now

1 year: Save 17%.

$14,000

USD/Year
Buy Now

1 year: Save 17%.

$22,000

USD/Year
Buy Now

1 year: Save 17%.

$40,000

USD/Year
Buy Now

1 year: Save 17%.

$70,000

USD/Year
Buy Now

1 year: Save 17%.

$120,000

USD/Year
Buy Now

Standard edition functions: Identity authentication, permissions control, account management, and security audit

Professional edition functions: Automatic O&M, database O&M audit, and functions of the standard edition

Learn More

Max. concurrent connections

50 assets

fifty

100 assets

one hundred

200 assets

two hundred

500 assets

two hundred

1000 assets

five hundred

2000 assets

1,500

5000 assets

2,000

CPU

50 assets

4 cores

100 assets

4 cores

200 assets

4 cores

500 assets

8 cores

1000 assets

8 cores

2000 assets

8 cores

5000 assets

8 cores

Memory

50 assets

8 GB

100 assets

8 GB

200 assets

8 GB

500 assets

16 GB

1000 assets

16 GB

2000 assets

16 GB

5000 assets

16 GB

System disk

50 assets

100 GB

100 assets

100 GB

200 assets

100 GB

500 assets

100 GB

1000 assets

100 GB

2000 assets

100 GB

5000 assets

100 GB

Memory disk

50 assets

500 GB

100 assets

1,000 GB

200 assets

1,000 GB

500 assets

2,000 GB

1000 assets

2,000 GB

2000 assets

2,000 GB

5000 assets

2,000 GB

Standard edition functions 

50 assets

Supported

100 assets

Supported

200 assets

Supported

500 assets

Supported

1000 assets

Supported

2000 assets

Supported

5000 assets

Supported

Professional edition functions

50 assets

Not supported

100 assets

Supported

200 assets

Supported

500 assets

Supported

1000 assets

Supported

2000 assets

Supported

5000 assets

Supported

Standard edition functions: Identity authentication, permissions control, account management, and security audit

Professional edition functions: Automatic O&M, database O&M audit, and functions of the standard edition

Learn More
Terms & Conditions

Target: Huawei's cloud e-marketing customers and channel partner customers can participate in the activity of providing full consumption. Please consult the customer manager before other customers participate

Time: August 12, 2020 to September 11, 2020

During the event, Huawei Cloud users purchase cloud services through the event page, or use cloud gift package coupons to purchase new cloud services on Huawei Cloud's official website. When the cumulative amount of paid in payment for new purchases reaches a certain amount, they can redeem corresponding physical gifts. Event coupons can be obtained by means of "cloud gift package" on the activity page, and the amount paid for orders directly purchased on Huawei Cloud official website (without using the mid year Cloud Juhui event coupon) or participating in other activities is not included in the statistical range;

Ok
  • How Does CBH Calculate the Asset Quantity?

    Assets are resources managed with a CBH system. The number of resources is the number of protocols you configure for and applications run on each cloud server managed with a CBH system. Each CBH instance can manage as many resources as the edition allows.

    For example, if two RDP, one Telnet, and one MySQL host resources and one Google Chrome browser application resource are added to a cloud server managed by a CBH system, the number of managed assets is five.

  • How Does CBH Count the Concurrent Connections?

    The number of concurrent connections are connections established between managed resources and a CBH system over all protocols at the same time. You can create as many system users as you need. The total number of connections established by different users concurrently cannot exceed the quantity supported by the corresponding CBH edition.

    For example, if 10 O&M users each initiates 5 connections (such as remote connections through SSH and RDP) concurrently, the number of concurrent connections is 50.

Functions

CBH helps with authentication, authorization, account, and audit (AAAA) management. CBH also enables collaborative O&M so that you can invite other O&M engineers to join on-going O&M. Beyond that, you can quickly apply for O&M permissions by submitting service tickets.

  • Identity Authentication

    CBH authenticates users using mobile one-time passwords (OTPs), SMS messages, USB keys, and/or OTP tokens. This allows you to mitigate O&M risks caused by leaked credentials.

    CBH authenticates users using mobile one-time passwords (OTPs), SMS messages, USB keys, and/or OTP tokens. This allows you to mitigate O&M risks caused by leaked credentials.

  • Account Management

    CBH establishes a visible, controllable, and manageable O&M system to centrally manage system user accounts and resource accounts for their entire lifecycle. With CBH, you can stop worrying many O&M risks such as shared accounts, temporary accounts, and uncontrollable permissions.

    CBH establishes a visible, controllable, and manageable O&M system to centrally manage system user accounts and resource accounts for their entire lifecycle. With CBH, you can stop worrying many O&M risks such as shared accounts, temporary accounts, and uncontrollable permissions.

  • Permissions Control

    CBH supports fine-grained permission management so that you have complete control over which user can access the CBH system and which managed resources can be accessed by a specific system user, enabling protection for both the CBH system and managed resources.

    CBH supports fine-grained permission management so that you have complete control over which user can access the CBH system and which managed resources can be accessed by a specific system user, enabling protection for both the CBH system and managed resources.

  • O&M Audits

    You can audit behavior in the CBH system and O&M activities for managed resources, including Linux servers, Windows servers, and databases, as well as file transfer activities. The entire O&M process on a Linux or Windows server is recorded.

    You can audit behavior in the CBH system and O&M activities for managed resources, including Linux servers, Windows servers, and databases, as well as file transfer activities. The entire O&M process on a Linux or Windows server is recorded.

  • Efficient O&M

    You can access CBH through a browser or third-party client, such as SecureCRT, Xshell, Xftp, WinSCP, Navicat, and Toad for Oracle. If you use a professional CBH instance, you can automate part of O&M work.

    You can access CBH through a browser or third-party client, such as SecureCRT, Xshell, Xftp, WinSCP, Navicat, and Toad for Oracle. If you use a professional CBH instance, you can automate part of O&M work.

  • O&M Ticket Application

    During the O&M, if you do not have the required permissions for a certain resource, you can submit a ticket to apply for the permissions needed.

    During the O&M, if you do not have the required permissions for a certain resource, you can submit a ticket to apply for the permissions needed.

Documentation

Quick Start

Getting Started with CBH

User Guide

Helps you easily and quickly use CBH.

FAQs

Help address your problems quickly.
See more Stow

Recommended for You

  • Database Security Service

    Audit database audits and prevent SQL injection.

    Audit database audits and prevent SQL injection.

    Learn More

  • Data Security Center

    Identify, mask, and protect your sensitive data.

    Identify, mask, and protect your sensitive data.

    Learn More

  • Cloud Certificate Manager

    Manage SSL and private certificates.

    Manage SSL and private certificates.

    Learn More
Learn more about CBH with a one-on-one consultation.
Contact Sales