Template snippets and support for automatically adding ssh keys to provisioned hosts
Provide a method for automatically adding ssh keys to the authorized_keys on hosts that are provisioned via Foreman with the Remote Execution plugin enabled.
Optionally also include the necessary package installations for various operating systems to ensure that SSH is installed and available.
#1 Updated by Marek Hulán almost 7 years ago
This also mean we have to introduce private key management in Foreman, the key can differ per user/hostgroup/host etc. We could use parameters as a storage but private keys are sensitive data and parameters do not help with different key per user scenario.
#5 Updated by Marek Hulán almost 7 years ago
By more keys for one proxy I meant more keys can be used through one proxy, sorry for bad wording. The idea is that every user would use his own private key (or each host, hostgroup, location, ...) so when one key is compromised, not the whole infrastructure is compromised. Also it would add additional level of granularity, so you could limit users <-> targets access. Anyway it's probably more like "would be nice" or "food for thought" in this phase.