If users know account passwords and enter them inside SSH sessions,
these passwords appear in the logs in plain text — this is
JumpServer's default behavior for any user input.
To change this behavior:
-
Open the configuration file:
vi /opt/jumpserver/config/config.txt
-
Add the following line at the
end of the file:
DISABLE_INPUT_AS_COMMAND=true
-
Restart the application:
jmsctl restart
After this, passwords will no longer
be saved in the logs.
Note: Only passwords entered in response to a
password prompt (for example, after running the sudo command) will not be
logged.
If a user types their password somewhere else — for example, into a
text file — the password will still appear in the command logs.
Need help?
Support during the JumpServer PAM Enterprise Edition pilot
Have you started testing JumpServer PAM EE and encountered an
issue? Our process includes organizing email threads or Telegram
groups for prompt issue resolution. If you are sure you were not
added to such a group, please contact your supplier or reach out to
us at support@afi-d.ru
Training for your specialists on configuring and administering
JumpServer PAM
As part of an active technical support subscription, we will
train your specialists in installation, configuration,
administration of JumpServer PAM, as well as recovery from errors
and incidents.
Training is conducted online, according to a pre-agreed plan,
and includes mandatory practical knowledge verification with the
issuance of personalized certificates (upon successful exam
completion).
Video tutorials
Visit our channel on YouTube with video tutorials covering the
configuration of all JumpServer PAM sections. The videos are in
Russian and are updated with each new release.
Technical support for the free JumpServer PAM Community
Edition
The idea of implementing a complex but business-critical PAM
system can be intimidating due to the perceived complexity of
setup, administrator and security team training, and changes to
account management processes.
To make the deployment and configuration of JumpServer Community
Edition comfortable, and to ensure you can always rely on
professional assistance, AFI Distribution offers an annual
technical support subscription.
The support package priced at 1.5 million RUB per JumpServer
Community Edition instance (with no limits on the number of users
or target systems) includes everything required to use PAM:
- Russian-language documentation;
- usage scenarios and recommended deployment architectures;
- training for administrators and information security
specialists on working with JumpServer;
- tips and solutions for common questions;
- notifications about new releases with verified upgrade
instructions;
- integration with RADIUS and multi-factor authentication
“Multifactor” ;
- direct access to an engineer (no first-line support) with a
clear SLA.
Learn more and make a purchase on the
Technical support subscription page
