search

slackhq / nebula

A scalable overlay networking tool with a focus on performance, simplicity and security
MIT License
14.28k stars 958 forks source link

Read ssh public keys from an `authorized_keys` file #1051

Open vd2org opened 8 months ago

vd2org commented 8 months ago

What version of nebula are you using?

1.8.1

What operating system are you using?

Linux, macOS, iOS

Describe the Bug

Make able to read public access keys for ssh service from an authorized_keys file. Now I have to describe each key explicitly in the conf file which is not very useful.

Logs from affected hosts

No response

Config files from affected hosts

sshd:
  enabled: true
  listen: 127.0.0.1:2222
  host_key: /etc/ssh/ssh_host_ed25519_key
  authorized_users:
    - user: root
      keys:
        - /root/.ssh/authorized_keys
ieugen commented 6 months ago

Trusing ssh certificates issued by an ssh ca would also be very useful. For our use case more useful than authorized_keys - if it has an option to limit access by groups

johnmaguire commented 6 months ago

@ieugen Can you file an additional ticket for that request? I think there are different use cases for these features, and they deserve to be separate FRs.