Displaying 2 results from an estimated 2 matches for "device_rol".
Did you mean:
device_role
2020 Jan 30
3
SSH certificates - restricting to host groups
...could generate it via a level of indirection (user -> group; group
-> list of principals or principal suffixes)
At the host side, I was thinking of authorizing principals based on the
machine's "role" in Netbox, which we use as inventory database:
#!/bin/sh
echo "$1:{{ device_role }}"
echo "$1:all"
Regards,
Brian.
2020 Jan 30
5
SSH certificates - restricting to host groups
Hello,
I am trying to work out the best way to issue SSH certificates in such
way that they only allow access to specific usernames *and* only to
specific groups of host.
As a concrete example: I want Alice to be able to login as "alice" and
"www" to machines in group "webserver" (only). Also, I want Bob to be
able to login as "bob" and