HashiCorp Vault Integration Privilege Escalation Support Added

Summary

SSH privilege escalation has been added to the HashiCorp Vault Privileged Access Management (PAM) integration. When configuring SSH credentials using the HashiCorp Vault integration, customers can now choose one of the following privilege escalation methods:

• sudo
• su+sudo
• su
• .k5login
• Cisco ‘enable’
• dzdo
• pbrun

Customers may specify the name of a secret in Hashicorp vault containing the privilege escalation password, if it differs from the login password.

Change

New UI elements have been added when authenticating using HashiCorp Vault under “Elevate privileges with”.

Impact

Nothing should change with your current configuration. The new escalation methods can be used when configured.

Release Date

5/23/2023 for IO and Nessus