Privileged Password and Privileged Session Management

Secure Shell (SSH) is a tool used to enable secured systems management, file transfers, and application automation that ships standard with every Unix, Linux, and Mac system and is widely used on Windows. SSH keys are commonly used by privileged users and applications to automate secured sessions by enabling login over SSH without typing a password. As with passwords, unmanaged SSH keys create an opportunity for compromise by both insiders and external hackers. Common challenges include:

  • Inappropriate sharing of SSH keys with unauthorized persons
  • Loss of SSH keys providing a backdoor to systems and resources
  • Stolen SSH keys by insiders or external hackers
  • SSH key sprawl