View Code? Open in Web Editor
NEW
This repo holds scripts that can be used to configure the SSH Deamon on a Linux instance to look for public keys in DynamoDB before the .ssh/.authorized_keys file in users homedir.
License: MIT License
dynamodb-ssh-access's Issues
This will allow users to share homedir across many instances and will help against data loss at instance termination
The table should be referenced by Arn in the ssm document, instead of hardcoded name and region in bash script.
Ideally a user record will have groups attribute defined as an array of Strings. These will be the groups the user is a member of.
Each instance should then have one or more tags defining which groups are allowed to login and which are allowed to sudo
create_machine_users.sh reference an uassigned $1 variable to fetch the username.
In order to deploy the solution to autoscaled instances.
Add a central log and make sure it gets pushed to CloudWatch. Consider adding metrics to ease monitoring.