chef - [chef] Deploying User Private Keys

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Deploying User Private Keys

From: Curtis Stewart < >
To: " " < >
Subject: [chef] Deploying User Private Keys
Date: Mon, 3 Feb 2014 21:06:54 +0000
Accept-language: en-US

I’m currently using the opscode-cookbooks/users cookbook to deploy system
users.

The users_manage resource uses data bags to deploy users, and this does allow
you to set an ‘ssh_private_key’ attribute, however, I don’t want to store our
private keys as plain text in our repository.

My plan is to use ChefVault to deploy users private keys (encrypted data bags
and a template/file resource), after the users have been created with the
users_manage resource.

Does anyone have suggestions for a better method, or best practice for this
case?

Thanks,
Curtis

[chef] Deploying User Private Keys, Curtis Stewart, 02/03/2014
- [chef] Re: Deploying User Private Keys, Arnold Krille, 02/03/2014
  - [chef] Re: Deploying User Private Keys, Curtis Stewart, 02/03/2014
    - [chef] Re: Re: Deploying User Private Keys, Cassiano Leal, 02/03/2014
      - [chef] Re: Re: Re: Deploying User Private Keys, Rudi, 02/03/2014
        
        [chef] Re: Re: Re: Re: Deploying User Private Keys, Cassiano Leal, 02/04/2014
        
        [chef] Re: Re: Re: Re: Re: Deploying User Private Keys, Rudi, 02/04/2014
      - [chef] Re: Re: Re: Deploying User Private Keys, Eric G. Wolfe, 02/03/2014
    - [chef] Re: Re: Deploying User Private Keys, Lamont Granquist, 02/03/2014
- [chef] Re: Deploying User Private Keys, Alfredo Palhares, 02/04/2014
  - [chef] Re: Re: Deploying User Private Keys, Arnold Krille, 02/04/2014