View Code? Open in Web Editor
NEW
This repo holds scripts that can be used to configure the SSH Deamon on a Linux instance to look for public keys in DynamoDB before the .ssh/.authorized_keys file in users homedir.
License: MIT License
dynamodb-ssh-access's People
Contributors
Stargazers
dynamodb-ssh-access's Issues
Ideally a user record will have groups attribute defined as an array of Strings. These will be the groups the user is a member of.
Each instance should then have one or more tags defining which groups are allowed to login and which are allowed to sudo
Add a central log and make sure it gets pushed to CloudWatch. Consider adding metrics to ease monitoring.
This will allow users to share homedir across many instances and will help against data loss at instance termination
create_machine_users.sh reference an uassigned $1 variable to fetch the username.
In order to deploy the solution to autoscaled instances.
The table should be referenced by Arn in the ssm document, instead of hardcoded name and region in bash script.