echo 'hello world'
on the remote host foo
as the target user admin
).kubectl
or the zli
clients. Regardless of whether an end user uses kubectl
or the zli
, BastionZero records the timestamp, SSO user, target cluster, target user or group, and API associated with the command. When the zli
is used, BastionZero also records the command text associated with the command. Further, when the zli
is used to exec into a container, BastionZero will record that shell command text as well.[email protected] deleted target
. Closed connection events are also the result of closing or terminating SSH tunnels or native TCP connections.zli
-based shell connection. In these cases, the shell is still running on the BastionZero SaaS, but the client is no longer active. By re-authenticating to the web app or by attaching in the zli
, the connection is restored and a connected event is generated.