|
|
|
|
|
|
by joeskyyy
2318 days ago
|
|
|
You can also use SSM and session manager to get a similar experience for those instances: https://docs.aws.amazon.com/systems-manager/latest/userguide... I haven't had to manage SSH keys in a long time ;) With this I just have a bash function for my various environments (e.g. dev = dssm) where I provide in the instance ID giving me issues if I really need to log into the server. e.g. function dssm {
aws --region us-west-2 --profile my-dev-profile-name ssm start-session --target $1
} Then: dssm i-abcdef123456 And I'm dropped into a shell. SSM Session manager is far from perfect, but it gets the job done, and is fully auditable, gets logged (including commands ran), and best of all works with SAML IAM profiles right out the gate. No more sharing keys, no more managing keys, it's great! |
|
|