The protocol to allow for temporary administrative priviledges. Administrators create ephemeral roles with just enough priviledges for a user to do their job.
Process
- A user goes through IM to request a ticket for PAM
- Administrator creates ephemeral role in the Bastion Forest
- Administrator gives credentials over PAM TRUST
- User recieves ticket
- Administrator closes PAM session