julien at perdition.city
Thu Nov 21 09:41:49 UTC 2019
I'd like to setup an automated mechanism to replace SSH keys and
autorized_keys management with SSH certificates. Basically every member
of the team who arrives in the morning should authenticate to an
authority (some daemon in a very secure jail which implement a local CA
+ key sign) and should receive back a signed certificate with a validity
period of x hours.
After digging a little I found https://smallstep.com/certificates/
and https://smallstep.com/cli/ (which aren't packaged BTW) but I'm
wondering if there were others similar tools ..?
Belgian Biodiversity Platform (http://www.biodiversity.be)
PGP fingerprint: EEF9 F697 4B68 D275 7B11 6A25 B2BB 3710 A204 23C0
No trees were killed in the creation of this message.
However, many electrons were terribly inconvenienced.
More information about the freebsd-questions