-
Epic
-
Resolution: Unresolved
-
Normal
-
None
-
None
-
ssh-cert
-
False
-
-
False
-
To Do
-
CNV-8290 - Easy Virtual Machine Access
-
100% To Do, 0% In Progress, 0% Done
-
---
-
---
Goal
Integrate with ssh certificates
User Stories
- As a VM owner I would like to certify my ssh key with the cluster, and then be able to log into all of my VMs with no need for password.
- As a VM owner I would like to opt-out of this scheme and fall back to the current password-based VM-generation
- As an Admin I would like to revoke certificates of former or suspicious accounts. Once revoked, a certificate would not be accepted by any of my cluster VMs.
Non-Requirements
- List of things not included in this epic, to alleviate any doubt raised during the grooming process.
Notes
- https://www.appviewx.com/blogs/beyond-ssh-keys-authentication-using-ssh-certificates/
- https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/deployment_guide/sec-signing_ssh_certificates
Done Checklist
| Who | What | Reference |
|---|---|---|
| DEV | Upstream roadmap issue (or individual upstream PRs) | <link to GitHub Issue> |
| DEV | Upstream documentation merged | <link to meaningful PR> |
| DEV | gap doc updated | <name sheet and cell> |
| DEV | Upgrade consideration | <link to upgrade-related test or design doc> |
| DEV | CEE/PX summary presentation | label epic with cee-training and add a <link to your support-facingĀ preso> |
| QE | Test plans in Polarion | <link or reference to Polarion> |
| QE | Automated tests merged | <link or reference to automated tests> |
| DOC | Downstream documentation merged | <link to meaningful PR> |
- is related to
-
-
- New
-