SSH Key management in BalenaCloud

system · January 31, 2023, 6:50pm

Currently, if a user wants to connect outside of the balenaCloud, it’s a manual process of adding SSH keys to the config.json which:

At scale is impractical to manage
Error prone (yes, can be helped with a copy & then piping it via jq to validate)

Management of the keys would help if it could be done via balenaCloud, even better to have SSH Certificate Authority as this would help the management of the keys for engineers/services.

One aspect that why also is important from our PoV is to have a redundant way how to connect to the device if e.g there is a service outage or the device is only on a local network.

anonymizeduser · June 26, 2023, 9:12am

It’s not an official solution to this problem, and it would be great if we could have Balena managed SSH CAs, but this forum post I made earlier this year covers how we’ve deployed an SSH CA to Balena devices: Certificate based authentication for SSH

Topic		Replies	Views
Centralised SSH key management balenaOS ssh	5	619	November 7, 2023
how is the SSH key added to balenaCloud used? Product support ssh	2	1686	January 21, 2022
Home network to Balena Cloud connectivity balenaOS raspberrypi3	8	427	March 2, 2021
Certificate based authentication for SSH General ssh	3	623	January 20, 2023
Migrate from BalenaCloud to OpenBalena remotely openBalena	4	248	January 11, 2024

SSH Key management in BalenaCloud

Related topics