Is your feature request related to a problem? Please describe.
In order to harden the environment we need to lock down our environment. At the moment that involves updated the SSHd configuration to, for example, prevent password authentication.
While there are feature requests to make the WebUI experience more comprehensive (and possibly other FRs that could be written, like ability to configure the SSH keys from the web UI), there are going to be times when a user may need to perform a fail safe boot and does not have physical access to the hardware.
Describe the solution you'd like
An ability for the BMC, via either the TPI or Web Interface, to be booted into "safe mode" remotely.
Describe alternatives you've considered
Ability for the BMC to manage certain services like SSHD, including the ability to force a bypass mode to prevent accidental lockouts.
Additional context
I run my Turing Pi boards inside my server room, and it can be difficult to access, especially if physical access to the board is required (i.e. the operation does not go through front IO).
Is your feature request related to a problem? Please describe. In order to harden the environment we need to lock down our environment. At the moment that involves updated the SSHd configuration to, for example, prevent password authentication.
While there are feature requests to make the WebUI experience more comprehensive (and possibly other FRs that could be written, like ability to configure the SSH keys from the web UI), there are going to be times when a user may need to perform a fail safe boot and does not have physical access to the hardware.
Describe the solution you'd like An ability for the BMC, via either the TPI or Web Interface, to be booted into "safe mode" remotely.
Describe alternatives you've considered Ability for the BMC to manage certain services like SSHD, including the ability to force a bypass mode to prevent accidental lockouts.
Additional context I run my Turing Pi boards inside my server room, and it can be difficult to access, especially if physical access to the board is required (i.e. the operation does not go through front IO).