Connect to Protected Theater using VNC or the Console

To connect to your Protected Theaters and Protected Actors, you can initiate your Virtual Network Computing (VNC) connection through the Director. You use a separate VNC Viewer, such as RealVNC, for the actual connection. If you have Mandiant Security Validation (MSV) and not Mandiant Advantage Security Validation (MA-SV), the Director includes a built-in console that allows you to connect to your Protected Theaters and Protected Actors. This option is functional, but if you have extensive changes or work to do, it is better to use a direct VNC connection.

Connect using a direct VNC connection (recommended)

1. Launch the Director.
2. Click Environment > Protected Theaters.
3. Click Edit next to the Protected Actor or Protected Theater.
4. Click Remote VNC. You are shown a port value, generally 5900 or 5901, and the button changes to Stop VNC.
5. Set up a tunnel, using one of the following sets of steps, depending on whether you're using Linux or Windows:
   • From a Linux system:
     1. Open a command prompt.
     2. Run one of the following commands, depending on the Port value that appeared in Step 4:

        ssh -L 5900:PROTECTED_THEATER_IP:REMOTE_VNC_PORT nodeone@PROTECTED_THEATER_IP

        or

        ssh -L 5901:PROTECTED_THEATER_IP:REMOTE_VNC_PORT nodeone@PROTECTED_THEATER_IP

        • PROTECTED_THEATER_IP is the IP address for your Protected Theater image.
        • REMOTE_VNC_PORT is the port value displayed when you click Remote VNC.
     3. Enter the nodeone account password.
   • From a Windows system:
     Instructions provided are using PuTTY as an example, but any SSH client can be used.
     1. Open PuTTY.
     2. Select Connection > SSH > Tunnels.
     3. Add the Tunnel information:
        • Enter a Source port.
        • Enter PROTECTED_THEATER_IP:SOURCE_PORT for Destination.
        • Click Add.

          Windows Tunnel Settings for PT

     4. Select Session.

     5. For the Host name, enter:

        nodeone@PROTECTED_THEATER_IP:PORT

        • PROTECTED_THEATER_IP is the IP address for your Protected Theater image.
        • PORT is the port value for the destination you're connecting to.

     6. Select SSH.

        You can enter a name for a Saved Session and click Save at this point, to save the connection setup for use in the future.
     7. Click Open.
     8. Enter the nodeone account password.
6. Launch your VNC Viewer.
7. Connect to localhost on the port.

Once established, you can keep the VNC connection open or you can disconnect it by clicking Stop VNC. If you stop the VNC connection, you need to set up the tunnel again when you connect to it.

Troubleshooting

In some cases, the Remote VNC button might indicate that the VNC port has been opened but is actually not opened in the Protected Theater. If this happens, click the button two times and let it toggle between Remote and Stop.

Connect using the console

1. Launch the Director.
2. Click Environment > Protected Theaters.
3. Click Edit next to the Protected Actor.
4. Click Launch Console to access the image.