Skip to main content

External User Keys

External user keys represent user keys that are outside the managed environment. They are identified by their Is External field. You can list external user keys with the following client commands:

  • To list external authorized keys, use the following command:

    $ ssh-mgr-client list-authorized-keys -F is_external=True

  • To list external private keys, use the following command:

    $ ssh-mgr-client list-private-keys -F is_external=True

Records of external user keys are generated by access requests to/from locations outside the managed environment. Additionally, administrators may manually provide information about unknown private-key entries, which converts them into external private-key entries. Records of external keys specify the contact information of the requester who submitted the access request (instead of the user account that owns the key). External keys are not managed by Key Manager, and data associated to external key entries is not automatically updated. It is up to Key Manager administrators to ensure that any information about external-key records must be kept up to date.