Remote Sign-In of Linux Devices to Private Access

This allows administrators to remotely sign in Private Access users on Linux devices using command-line interface (CLI) tools, even during or immediately after installation.

It enables user authentication to the Harmony SASE Agent, so the device can access private resources as defined in your Zero Trust Network Access policies.

Prerequisites

• Install the Linux version 10.0.3.933 or higher.

• Users are fully registered to the tenant with both email and password.

Use Case

This feature enables administrators to remotely register and sign in Linux devices to Private Access (PA) using CLI commands, without requiring any user interaction. This helps manage unattended or remotely located devices.

Using the Linux Agent CLI for Private Access Login and Troubleshooting

After installation, the Linux agent runs as a background service. You can access its control interface through these commands:

1. Login to Private Access:

   /usr/bin/p81-helper-daemon ctl login TENANT_ID USERNAME PASSWORD

   Replace,

   TENANT_ID with your tenant ID.

   USERNAME and PASSWORD with the user’s login credentials.

   Note - The provided TENANT_ID must have database identity provider enabled.

2. To view CLI help:

   /usr/bin/p81-helper-daemon ctl --help

3. To view login-specific help:

   /usr/bin/p81-helper-daemon ctl login --help

4. If login fails, the CLI displays a descriptive error message. For support, collect and provide:

   1. The full command used, excluding the password.

   2. CLI output or a screenshot of the error.

   3. Files from this location, compressed into .zip or .tar:

      /var/log/perimeter81helper*.log