SSH Command Restrictions

SSH command restrictions in Secret Server enhance security by allowing administrators to define and enforce specific commands that users can execute during SSH sessions. This feature, part of the privilege management capabilities, requires SSH proxy to be enabled and supports the creation of command menus that map user-friendly command names to system commands. Administrators can configure these menus to restrict users to a predefined set of commands, preventing unauthorized or potentially harmful actions. Command restrictions can be applied to individual secrets or through secret policies, ensuring consistent enforcement across the organization. This setup not only minimizes the risk of misuse and accidental errors but also supports compliance with security policies by providing detailed audit logs of all executed commands.