AWS Simple AD : SSH based key Authentication for Linux instances

0 votes

We currently have openldap setup and we upload new user's keys to LDAP and they are able to login to our AWS EC2 Linux instances using these keys.

We are planning to migrating to AWS Simple AD, Does AWS Simple AD offer feature of uploading SSH keys for new users ? and authenticating to Linux servers using this uploaded SSH key? Sorry I couldnt find any definite answer on google, any direct help will be much appreciated. Thanks!

 

Aug 29, 2018 in AWS by bug_seeker
• 15,350 points
65 views

1 answer to this question.

0 votes

You can interact with SimpleAD in the same way you would with any ldapserver. You will need to be within the VPC but the following code works (assuming you already have the user Test Usercreated in the directory

Example

/tmp/username.ldif

dn:
  CN=Test User,
  CN=Users,DC=ad,
  DC=example,
  DC=org
  changeType:
modify add:
  objectClass objectClass:
  ldapPublicKey dn:
  CN=Test User,
  CN=Users,
  DC=ad,
  DC=example,
  DC=org
changeType: modify
  add: sshPublicKey
    sshPublicKey: ssh-rsa ....
    ldbmodify --verbose --url
    "ldap://ad.example.org" --user
    "SIMPLEAD_USERNAME" --password
    'SIMPLE_AD_PASSWORD' /tmp/username.ldif

This post details joining the realm and using it to auth the servers using sssd with AuthorizedKeysCommand.

https://github.com/localytics/chef-sssd/blob/master/GETTING_STARTED.md

answered Aug 29, 2018 by Priyaj
• 56,520 points

Related Questions In AWS

0 votes
1 answer

AWS Simple AD : SSH based authentication for Linux insatnces

You can interact with Simple AD in ...READ MORE

answered Aug 3, 2018 in AWS by Archana
• 4,090 points
156 views
0 votes
1 answer

Backup solutions for AWS EC2 instances

I've been using Skeddly for several months now to ...READ MORE

answered Sep 12, 2018 in AWS by Priyaj
• 56,520 points
37 views
0 votes
1 answer

How do I enable SSH for my AWS-EB instance?

Using the EB CLI to do eb ...READ MORE

answered Oct 9, 2018 in AWS by Archana
• 4,090 points
44 views
0 votes
1 answer

AWS ssh access permission denied (public key issue)

For Ubuntu Instance, First, check whether you have ...READ MORE

answered May 13 in AWS by sunshine
• 1,240 points
72 views
0 votes
1 answer
0 votes
1 answer
0 votes
1 answer

Amazon AWS - simple email service for Sydney region

SES is just an authenticated endpoint on ...READ MORE

answered Jul 20, 2018 in AWS by Priyaj
• 56,520 points
59 views
+1 vote
3 answers

AWS Pricing for upgrading reserved instances

Depending on your situation, you may be ...READ MORE

answered Sep 3, 2018 in AWS by findingbugs
• 4,750 points
57 views