ScriptsCollections/SSH-Rotate-Keys
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge branch 'development' of github-omc:TBWA-EGPlus-Japan/Internal-Projects.ssh-rotate-keys into development

Browse Source
This commit is contained in:
Clemens Schwaighofer
2024-09-25 12:03:23 +09:00
parent a5ad684585 00d378bf9c
commit a27ca6a455
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
ReadMe.md
View File

@@ -1,6 +1,7 @@
# Rotate all ssh keys on servers for certain users # Rotate all ssh keys on servers for certain users
This script is run locally on your operation Workstation. These scripts are run locally on your operation Workstation.
These scripts are mainly destinated to rotate the SSH key, a set of scripts is for admin users, the other is for normal users. These scripts are mainly destinated to rotate the SSH key, a set of scripts is for admin users, the other is for normal users.
- create new key with name scheme - create new key with name scheme
@@ -37,6 +38,7 @@ server_pem_archive_folder=~/folder/for/archive/pems/
### server_list file ### server_list file
This file is not kept in the repository for security purpose. <<< to specify >>> This file is not kept in the repository for security purpose. <<< to specify >>>
This file is semicolon ';' separated and not ',' as usual. The reason is that the authorization key settings block is comma separated. This file is semicolon ';' separated and not ',' as usual. The reason is that the authorization key settings block is comma separated.
- Server: server name as to which to connect to - Server: server name as to which to connect to
@@ -49,6 +51,7 @@ This file is semicolon ';' separated and not ',' as usual. The reason is that th
### `admin-rotate-ssh-keys.sh` ### `admin-rotate-ssh-keys.sh`
Will create a new key and deploy on the server and move the PEM part to the local SSH folder. Will create a new key and deploy on the server and move the PEM part to the local SSH folder.
Folders are defined in the settings.ini Folders are defined in the settings.ini
Must have -g flag set to run Must have -g flag set to run
@@ -82,6 +85,7 @@ Options are
### `user-add-ssh-key.sh` ### `user-add-ssh-key.sh`
This script does not provide key, you need to provide a public key This script does not provide key, you need to provide a public key
Add a user public key to the admin user on a server Add a user public key to the admin user on a server
- -h override single host name - -h override single host name