Idea ID: 2874562

Linux SSH Relay - possibility to SSH Private Key rotation

matjazp matjazp
Status : New Idea


My customer has concern if I as PAM administrator must get/see/put in all the SSH private keys for purpose of private key authentication. I was thinking that I can also prepare PAM reconciliation procedure in the similar way like change password. But as I see there is no such solution to cover SSH private key rotation. It would be nice to have such in the PAM solution available to be even more secure process in the phase of onboarding the resource with private key.