hanskokx
commented
3 years ago This has been discussed before. Please search for the previous bug.
Open cjdxhjj opened 3 years ago
hanskokx
commented
3 years ago This has been discussed before. Please search for the previous bug.
cjdxhjj
commented
3 years ago we connect to the remote proxy by a system, such as jump server, or ops, every one have a account on the proxy system,that account system integration with ldap system, admin add or remove ldap use to grant or revoke access to remote ssh. so it can't add ssh key to auth proxy system, because it can't auto grant/revoke permission when user join or leave our term. that mean admin should add or remove the ssh key when user change, and publish the ssh key file to the person who need. if we use single ssh key file for every one, the permission is not meet, every one has every ssh machine, and can do any thing.
cjdxhjj
commented
3 years ago maybe you can receive the ssh response and sava it, use that file for the next time, i found many ssh client do that things, for example xshell.
hanskokx
commented
3 years ago I think this is an acceptable solution, provided the response is securely stored. This may mean providing a system password to decrypt it. Would that be acceptable?
@felixse - How do you feel about implementing this?
felixse
commented
3 years ago don't have the capacity right now, but PRs are always welcome 😄
there is no option to login by user name and password, please provide it