Audit and Sessions
Infra SSH is designed to be usable during live operations without losing accountability.
Admin Sessions
An admin session is a time-bounded approval lease.
Audit Records
Infra SSH stores audit rows for:
- successful operations
- denied operations
- failed operations
Each record includes:
- request id
- user id
- instance id
- tool name
- host id
- action id or operation type
- risk level
- decision
- approval lease id if present
- duration
- exit code or outcome
- error message when applicable
Sensitive raw content should not be stored in the audit row.
Forward Lifecycle
Named forwards are tracked explicitly so the platform can:
- reject duplicates
- reject port conflicts
- close known forwards safely
- keep audit coverage for open and close operations