This topic outlines the operation procedure in Bastionhost V3.2 after you create a Bastionhost instance, such as to deploy hosts, users, and O&M rules, implement O&M on hosts, and audit O&M sessions.
The following table lists the operation procedure.
|Step 1: Synchronize ECS assets||The administrator adds the host assets to be managed to the Bastionhost instance. In this step, the administrator can synchronize the ECS instances under the current Alibaba Cloud account to the Bastionhost instance.|
|Step 2: Import Alibaba Cloud RAM users||The administrator creates Bastionhost users in the Bastionhost instance. In this step, the administrator can import Alibaba Cloud RAM users to the Bastionhost instance as Bastionhost users.|
|Step 3: Create O&M rules||The administrator creates O&M rules to authorize Bastionhost users to perform O&M operations on assets.|
|Step 4: Perform O&M operations on hosts||Bastionhost users (O&M personnel) access authorized hosts and perform O&M operations in client-server (CS) O&M mode.|
|Step 5: Audit O&M sessions||When users log on to Bastionhost in SSH, RDP, or SFTP mode to perform O&M operations on authorized hosts, the administrator can view the O&M session details on the management page of the Bastionhost console. In this step, the administrator can query and audit O&M operations and interrupt high-risk sessions in the Bastionhost instance.|
For more operations, such as to configure user groups or host groups to support unified management and maintenance, see User Guide (V3.2).