Skip to main content

Authorizing Public Keys

Key Manager can create authorizations using provided public keys. This may be preferable in situations where source account(s) are outside the managed environment, or when the user wants access using specific keys.

To authorize public keys:

  1. Create an SSH key pair to be authorized. For example, run a command like the following as bob@bilberry.example.com:

    $ ssh-keygen -t rsa -f /home/bob/.ssh/id_rsa -N ''

  2. Obtain the new public key:

    $ cat /home/bob/.ssh/id_rsa.pub

    The output should be similar to:

    ssh-rsa AAAAB3NzaC1yc2<...> bob@bilberry.example.com

  3. To authorize the public key, go to the Home Add→Authorizations page, then under the Source section select External source. Provide the previously-created public key and the key-owner email.

    Complete the authorization similarly as described in Adding Authorizations Between Accounts. You will at least need to specify some destination accounts, then click Authorize.

    After the authorization jobs finish, you may verify that you can use public-key authentication to your destination accounts, from the account where you previously created the SSH keys.