PAM Security Glossary

Technologies and policies to monitor and protect accounts with elevated permissions.

Security principle where users receive only the strictly necessary permissions to perform their tasks.

Access granted only at the moment of need and for a limited period, eliminating standing privileges.

Video and text capture of all actions performed in a privileged session for auditing purposes.

Central encrypted repository where credentials, SSH keys, and secrets are stored.

Management of secrets, such as API keys and tokens, used by applications and scripts to avoid code exposure.

Security model that assumes no connection is trusted by default, requiring continuous verification.

Requiring more than one form of verification to grant access.

Intermediary that allows connection to servers without the user knowing the real destination password.

Licensing model based on actual platform usage, ideal for dynamic environments.

Contingency access used only in critical situations when normal access methods fail.

Automatic process of periodically changing passwords to reduce the risk of compromised credentials.

Technology that executes browsing sessions in an isolated environment to protect the internal network.

Remote privileged access management, enabling secure connections from anywhere through an isolated gateway.