Configuring SSH Key Types

Enabling SSH key types lets you filter the SSH keys that are returned to specific hosts. You can create key types, then tag SSH keys with that type. Then set up rulesets that tell Foxpass which hosts should return which key types

Key types can filter hosts by hostname, AWS Connection Name, AWS VPC ID, AWS Subnet ID, or AWS Tag. In order to use the AWS based matching features, you must connect your AWS account by adding your connection info here.

Each key type entry should represent a particular subset of your servers. As an example, you could create key types for each environment -- one for your Production machines and another for your QA machines. Each key type entry will use matching rules to return specific SSH keys as necessary. When a user is trying to access a host via SSH, Foxpass will check the key type to see which key type contains the host and then return all the user's keys with that key type. A host is considered a part of a key type if it matches any or all of the rules in the key type, depending on how you configure your rules. Regular expressions used for matching should be in Perl format.

Get started with the link below.


What’s Next