BAIS Server Access
This document describes how to get access to the BAIS servers for operational support.
Prerequisites
- HMCTS email account
- Connected to the VPN
- Member of ‘DTS Platform Operations’ Microsoft Entra group
- SSH Config for HMCTS Bastions
You can add yourself to any groups via the devops-azure-aad GitHub repo.
Connecting to BAIS servers
1. Connect to the HMCTS VPN.
2. Request JIT access to HMCTS Bastion Server
Production Bastion Server Access OR Non-Production Bastion Server
3. Add your HMCTS username to the below command, open a terminal window and start an SSH tunnel through the HMCTS Bastion to BAIS EFT01
ssh -L33390:10.225.251.135:3389 bastion-dev-nonprod.platform.hmcts.net -l USERNAME@hmcts.net
or
ssh -L33391:10.224.251.135:3389 bastion-devops-prod.platform.hmcts.net -l USERNAME@hmcts.net
Follow the instructions output from the SSH command
4. Open an RDP window and remote to localhost:33390 for NLE or localhost:33391 for Production. An HMCTS account will work here as these machines have been domain joined.
Note: You may need to reset your password if you have never logged into the HMCTS managed domain before. This is because the domain was created after the majority of HMCTS accounts.