Generally, with SSH keys you want to generate them where the private key is used. I would use a bash resource (assuming the node is Linux/Unix, of course) to call ssh-keygen. Have it put the private key into the correct place.
You can then copy the public key into an attribute on the node, and use that attribute in turn on the destination nodes.
Of course you can also use scp to copy the public key where it is needed, but that would mean more shell scripting and less chef.
Kevin Keane
The NetTech
http://www.4nettech.com
Our values: Privacy, Liberty, Justice
See https://www.4nettech.com/corp/the-nettech-values.html
-----Original message-----
From: K. Adam Wolfe < >
Sent: Wednesday 2nd September 2015 8:46
To:
Subject: [chef] private keysHello, all.
What is the opscode-recommended method for managing ssh keys - private
keys in particular?
My aim is to create the rsa keypairs on source nodes, then have the pub
key added to another user's authorized_keys on destination nodes;
preferably in databags / encrypted. Ideally having unique keypairs for
each source node.
Archive powered by MHonArc 2.6.16.