How to generate SSH bastion credentials for KuboScore ?
How to generate SSH bastion credentials for KuboScore ?
This sections contains instructions to create a user in Linux bastion, and generate SSH key for this user.
Do not forget to allow network SSH access from KuboScore (34.148.225.115) to bastion.
Prerequisites
You must have :
- CloudShell or Terminalopened in Linux Bastion Virtual Machine, connected with sudo privileges
- ssh-keygen installed in Linux Bastion
Instructions
1. Create a Linux user called kuboscore
2. Generate SSH keys
ssh-keygen -t ed25519 -C "kuboscore" -N "" -q -f kuboscore-key
Files have been generated locally in Linux bastion where you execute command line:
- kuboscore-key private key.
- kuboscore-key.pub public key
Please store kuboscore-key file locally, and do not share it without encryption. It will be requested during KuboScore process.
3. Set up public key authentication for kuboscore user
sudo mkdir /home/kuboscore/.ssh/
cat ~/kuboscore-key.pub | sudo tee -a /home/kuboscore/.ssh/authorized_keys
4. Set correct permissions on the files for kuboscore user
sudo chown -R kuboscore:kuboscore /home/kuboscore/.ssh
sudo chmod 700 /home/kuboscore/.ssh
sudo chmod 600 /home/kuboscore/.ssh/authorized_keys
5. Ensure Public Key authentication is enabled on Linux bastion
sudo grep PubkeyAuthentication /etc/ssh/sshd_config
It should output
PubkeyAuthentication yes