Breaking the social media silence for a moment: Just pushed to a new repo:
https://github.com/tillitis/tkey-ssh-ca
It's a small SSH Certificate Authority in the form of a custom SSH server. It generates SSH certs on demand when you SSH to it, like:
ssh foo-server > cert
Then you can use the cert to login to all servers that trust the same CA.
Proof of concept right now. No fancy things like cert templates or anything.
Can be backed by a Tillitis TKey, both the CA itself as well as the user certs.
I think this can be useful.
Back to the social media silence. See you!
#ssh #tillitis #tkey #ca #certificate
Breaking the social media silence for a moment: Just pushed to a new repo:
https://github.com/tillitis/tkey-ssh-ca
It's a small SSH Certificate Authority in the form of a custom SSH server. It generates SSH certs on demand when you SSH to it, like:
ssh foo-server > cert
Then you can use the cert to login to all servers that trust the same CA.
Gregory's Server