Large Scale SSH
Michael W Lucas
Everybody uses SSH, and everybody ducks the problems key management. This talk presents multiple ways to manage SSH keys at scale on OpenSSH systems.
The scope of SSH key management
-Distributing user keys
-Querying the network for user keys
Host keys - pregenerating & distributing known_hosts
SSH Certificate Authorities
SSH Principals, for truly large deployments
Michael W Lucas has been on Unix since the late 1980s and a network administrator since 1995. He’s the author of many books on technology, including the most recent book on SSH.