Creating secure, password-less SSH sessions in your web browser

For the times when you can’t get to or use your favorite SSH client like PuTTY or SecureCRT, just open your browser (desktop or mobile) and connect to your privileged endpoint using the SSH protocol (Unix/Linux servers, network devices and security appliances).

With Privileged Access Manager, you can create secure, password-less SSH sessions in your web browser without installing agents or native SSH clients.

Privileged Access Manager secures your SSH connection secrets (passwords, ssh keys and passphrases) will providing the option to easy connect to the endpoint without disclosing the secrets, all while layering audit, recording, permissions, workflows and policy enforced restrictions on the session.

Creating a SSH session using only a browser

  1. In the System, create a new record using one of the available Unix types. This includes Unix Host (user and password auth), Unix Host with Key (user and ssh key auth), Unix Host with Protected Key (user, ssh key and passphrase auth), Unix Host with SU (user and password with switch user) or any custom record type for utilizes the SSH protocol.
  2. Populate all the fields with your endpoint’s connection details.
  3. Click the Save and Return button.
  4. On the record’s Details page, click the Connect button.

PAM will now open a new browser window or tab and create your secure SSH session right in your web browser, no agents or clients required!

The session’s Audit events, recordings, permissions and history can all be accessed from the options right in the records’s Details page.


Now that you created your SSH endpoint record, share it with other users, apply an approval workflow or even setup a task to begin your automated password rotation policy.