How to ensure that password are not recorded when ssh session recording is enabled to meet security compliances like PCI DSS 3.2 , HIPAA, SOX, SOC2, FFIEC, NERC CIP, ISO 27001 ?

To ensure that passwords are not recorded when ssh session recording is enabled, simply set the ssh session recording to Output only which means only STDOUT is recorded. This would record only what is displayed on the users screen or terminal which is the STDOUT, so the user input when he runs a command on the ssh session and the output of the command executed is recorded.

 

Navigate to Settings->General->SSH Session Logging to select ssh session recording mode.

ssh session recording

5 (1)
Article Rating (1 Votes)
Rate this article
    Attached Files
    There are no attachments for this article.
    Related Articles RSS Feed
    Enable Google reCaptcha
    Viewed 266 times since Fri, Feb 1, 2019
    Access Keyword 2FA explained
    Viewed 288 times since Wed, Jan 30, 2019
    record rdp session
    Viewed 663 times since Thu, Dec 6, 2018
    How to stream the ssh sessions in real time?
    Viewed 2762 times since Wed, Nov 22, 2017
    How do i restrict commands that a user can execute in ssh in ezsh shell ?
    Viewed 2232 times since Wed, Jun 14, 2017
    Configure ssh timeout in ssh gateway
    Viewed 1986 times since Fri, Dec 1, 2017
    encryption type used for securing users ssh logs in ezeelogin
    Viewed 1235 times since Thu, Jun 15, 2017
    encryption used in ezeelogin use to secure information stored
    Viewed 1766 times since Thu, Jun 15, 2017
    How to enforce 2 Factor Authentication on user login?
    Viewed 886 times since Wed, Sep 19, 2018
    Set SSH User Expiry
    Viewed 839 times since Thu, Sep 20, 2018