ScriptsCollections/SSH-Rotate-Keys
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
950dc33cb9e771199bd13165fe8f55db9c937792
SSH-Rotate-Keys/ReadMe.md
Clemens Schwaighofer 950dc33cb9 First stage for ssh key rotate and remove scripts
2024-05-15 18:41:43 +09:00

651 B
Raw Blame History

Rotate all ssh keys on servers for certain users

  • create new key with name scheme
  • copy to server to
    • $ADMIN/.ssh (to be ended for admin user)
    • /etc/ssh/authorized_keys--master
    • /etc/ssh/authorized_keys/$USER

Then remove old key

Store ssh key name for current period

Scripts

rotate-ssh-keys.sh

Will create a new key and deploy on the server and move the PEM part to the local SSH folder

remove-old-ssh-keys.sh

Will check in the previous ssh public key folder and remove this entry from the remote server

Options

  • -h override single host name
  • -u override user name for a host
  • -f force key change
  • -n dry run
Reference in New Issue View Git Blame Copy Permalink