Hey folks, I have multiple VMs and personal machines across multiple cloud providers and I’m beginning to get frustrated with ssh key management. Each personal machine has it’s own key so if I lose it or it’s compromised I can just remove the key from the vms but it’s starting to get tedious making sure everything is up to date and any new keys are added.

Are there any solutions out there that would help?

  • Mark@social.cool110.xyz
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    @mbell You need a single source of truth to store the public keys in, then set AuthorizedKeysCommand in the SSHD config to a script that looks them up from there. I use this one for LDAP.

    • Mike@lemmy.remotelab.ukOP
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      This is an interesting solution, I don’t have LDAP running at the moment but it’s on my list of things to add to my setup.