|
Virigoth posted:We're currently running a growing deployment in Amazon Web Services for our software. Right now we use a centralized SSH key (WTF YOU GUYS) to login to hosts in our VPC. I'm investigating more secure and manageable ways to do this. What I'd like to do is have everyone create an SSH key pair and control access with an authorized_keys list to these instances. Has anyone ever done anything like this? The internet is pretty sparse on best practices and ideas on how to accomplish this. Why aren't you using an ldap server to centralize user information? You can store the public key info in that fairly simply. http://itdavid.blogspot.co.uk/2013/11/howto-configure-openssh-to-fetch-public.html
|
# ¿ Aug 27, 2014 14:23 |
|
|
# ¿ Apr 25, 2024 01:53 |