cron@feddit.org to Sysadmin@lemmy.worldEnglish · edit-217 days agoSysadmins, how do you store and manage passwords?message-squaremessage-square55fedilinkarrow-up11arrow-down10file-text
arrow-up11arrow-down1message-squareSysadmins, how do you store and manage passwords?cron@feddit.org to Sysadmin@lemmy.worldEnglish · edit-217 days agomessage-square55fedilinkfile-text
From a simple KeePass database to enterprise credential management solutions—what’s your setup at work?
minus-squarejplee@lemmy.worldlinkfedilinkarrow-up0·17 days agoAs an admin for a Linux server, I want to institute a ssh pub key expiration policy for all the users and enforce non-reuse of old keys. Does anyone have a best solution for this?
minus-squaredb0@lemmy.dbzer0.comlinkfedilinkarrow-up0·17 days agoHow do you do your pubkey deployments? If you use ansible, it should be simple enough.
minus-squarecron@feddit.orgOPlinkfedilinkarrow-up0·17 days agoSounds like certificates to me, but I don’t know of any such solution
minus-squareag10n@lemmy.worldlinkfedilinkarrow-up0·17 days agohttps://smallstep.com/docs/tutorials/ssh-certificate-login/ https://sssd.io/
As an admin for a Linux server, I want to institute a ssh pub key expiration policy for all the users and enforce non-reuse of old keys. Does anyone have a best solution for this?
How do you do your pubkey deployments? If you use ansible, it should be simple enough.
Sounds like certificates to me, but I don’t know of any such solution
https://smallstep.com/docs/tutorials/ssh-certificate-login/
https://sssd.io/