Closed Miro-H closed 5 years ago
keyctl
commented
5 years ago Do we accept the risk that if the config server is down, the admin has to physically go to the internal network to be able to fix something?
Don't we use redundancy for aslans?
Miro-H
commented
5 years ago No, parts of the ansible script even assume that there is only one of them. Also it would be a risk, since then two servers have key material to access the whole infrastructure.
Imo, we're better off if we accept this risk.
Liblor
commented
5 years ago Imo, we're better off if we accept this risk.
I second that
Miro-H
commented
5 years ago Done in #51
Add another user to the client machine that has can access the config server and from there (as a jump host) all other machines.
Do we accept the risk that if the config server is down, the admin has to physically go to the internal network to be able to fix something?