Using the same key for multiple passwordless installations
Article ID: 426594
Updated On:
Products
Issue/Introduction
Need the ability to install passwordless via XML robot installation using the same key to multiple servers. Is this possible?
Environment
- UIM 23.4
- automated_deployment_engine
- XML based installation
Resolution
- Generate key via method described here: Creating Linux/Unix Authentication Profiles
- The .ssh/authorized_keys can be copied to server where robot installation will require it. Permissions should be set to 600.
- Create XML file that will be used to deploy to multiple servers: Bulk install using XML file
example:
<?xml version="1.0"?>
<hosts>
<host>
<profile>CentOS</profile>
<arch>64</arch>
<hostname>(host_IP)</hostname>
<username>root</username>
<isPasswordLess>true</isPasswordLess>
<privateKey>-----BEGIN EC PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-256-<private_key_information>-----END EC PRIVATE KEY-----
</privateKey>
<passPhrase>password</passPhrase>
<domain>uimdomain</domain>
<hubip>(hub_IP</hubip>
<hub>primary_hub</hub>
<hubrobotname>primary</hubrobotname>
<hubport>48002</hubport>
<robotname>ROB1</robotname>
<tempdir>/opt/tmp</tempdir>
</host>
<host>
<profile>CentOS</profile>
<arch>64</arch>
<hostname>(host_IP</hostname>
<username>root</username>
<isPasswordLess>true</isPasswordLess>
<privateKey>-----BEGIN EC PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-256-<private_key_information>-----END EC PRIVATE KEY-----
</privateKey>
<passPhrase>password</passPhrase>
<domain>uimdomain</domain>
<hubip>(hub_IP</hubip>
<hub>primary_hub</hub>
<hubrobotname>primary</hubrobotname>
<hubport>48002</hubport>
<robotname>ROB2</robotname>
<tempdir>/opt/tmp</tempdir>
</host>
</hosts>
Feedback
