SSH key / authorized_keys management tool

Question

We have a handful of developers and a dozen servers each with several accounts on them and manage our ssh public keys by manual ssh-copy-id.

Does anyone know of a tool/script to manage ssh authorizations to those hosts?

Some sort of central public-keys list, developer->account@server authorizations and means to deploy those keys with something like ssh-copy-id. I could think of some scripts that would do the job, but would be glad not to do so. And I couldn't find anything except complex Kerberos setups or some ssh.com 'Universal SSH Key Manager' brochure.

Simple, single user key-management is explained here: http://superuser.com/a/8105/77079 — flob, Oct 05 '12 at 16:19
I know how to set up SSH to get rid of passwords, but that question shows now way to manage keys / account@server authorizations for more than one server/user... it just shows how to do the login without a password. — flob, Oct 05 '12 at 16:52
Sounds like a job for LDAP with all servers authenticating from there. — UtahJarhead, Oct 05 '12 at 16:33

score 2 · Accepted Answer · answered Oct 05 '12 at 16:56

2

Wikimedia uses Puppet for this; see their admins.pp.

Kerberos is actually quite simple to set up.

answered Oct 05 '12 at 16:56

u1686_grawity

426,297
64
894
966

score 0 · Answer 2 · answered Oct 02 '14 at 11:23

0

you may try secpanel. It has gui support for managing your keypairs and a gui for distributing keys to hosts.

answered Oct 02 '14 at 11:23

SLN

81
3

SSH key / authorized_keys management tool

2 Answers2