Réf. : how do you distribute secrets ?
Hugues PRISKER
hugues.prisker at edf.fr
Thu Apr 22 12:20:23 CEST 2004
hi all,
> How do you distribute passwords, private ssh-host-keys and/or private
> ssl-certificates ?
Here is an example of what we do on a cluster node for the user root :
1) Create this following directory :
/usr/local/share/fai/files/root/.ssh/authorized_keys on the FAI server
2) Put a file named "CLUSTERNODE" in this directory, CLUSTERNODE is the
name of our node FAI's class. This file is the copy of the root's file
"id_rsa.pub" created by ssh-keygen -t rsa
3) Write a script called CLUSTERNODE in the /usr/local/share/fai/scripts
which contains this command : fcopy -iM /root/.ssh/authorized_keys
then, you will have to install your client. We use PXE and dhcp for all our
nodes.
regards,
Hugues PRISKER
More information about the linux-fai
mailing list