-
Story
-
Resolution: Done-Errata
-
Undefined
-
None
-
rhel-system-roles-1.23.0-2.18.el8
-
None
-
rhel-sst-system-roles
-
20
-
22
-
None
-
QE ack, Dev ack
-
False
-
-
Yes
-
None
-
Pass
-
None
-
Feature
-
-
Done
-
None
Goal
- Deploy User CA on the system
- Configure principals (optional)
Reason:
This allows you to configure and manage the SSH server to authenticate via certificates.
Improves SSH authentication security: certificates have a validity period, unlike SSH keys.
More information on SSH certificates is available here: Managing SSH Access at Scale with HashiCorp Vault.
Result:
The related documentation is available and an example can be found in examples/example-use-certificates.yml.
- clones
-
RHEL-5972 ansible-sshd Manage SSH certificates
- Closed
- links to
-
RHEA-2023:124810 rhel-system-roles bug fix and enhancement update
- mentioned on