[moulidorai]

Companies should start using tools like ManageEngine Key Manage Plus https://www.manageengine.com/key-manager/ (or) other similar products for secure ssh key and ssl certificate management. Automation is the only way to avoid security issues.

Disclaimer: *I work for ManageEngine.

[rgooch]

Symantec has developed an Open Source system for short-term SSH and SSL certificate management with 2FA (VIP and U2F). We encourage people to adopt this to improve their security. Code: https://github.com/Symantec/keymaster Design document: https://docs.google.com/document/d/1AW3UROCJqTc3R4MLJXxmPUNS...