Sysadmins, how do you store and manage passwords? (feddit.org)

submitted 1 week ago* (last edited 1 week ago) by cron@feddit.org to c/sysadmin@lemmy.world

56 comments fedilink hide all child comments

From a simple KeePass database to enterprise credential management solutions—what’s your setup at work?

you are viewing a single comment's thread
view the rest of the comments

[-] jplee@lemmy.world 6 points 1 week ago

As an admin for a Linux server, I want to institute a ssh pub key expiration policy for all the users and enforce non-reuse of old keys. Does anyone have a best solution for this?

[-] cron@feddit.org 4 points 1 week ago* (last edited 1 week ago)

Sounds like certificates to me, but I don't know of any such solution

Edit: I found out that openssh allows the logon with a certificate. This guide shows how to setup a public key that expires after 52 weeks.

[-] db0@lemmy.dbzer0.com 4 points 1 week ago

How do you do your pubkey deployments? If you use ansible, it should be simple enough.

[-] ag10n@lemmy.world 3 points 1 week ago

https://smallstep.com/docs/tutorials/ssh-certificate-login/

https://sssd.io/

this post was submitted on 02 Apr 2025

51 points (98.1% liked)

Sysadmin

8613 readers

1 users here now

A community dedicated to the profession of IT Systems Administration

No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
!lemmy@lemmy.ml
!lemmyworld@lemmy.world
!lemmy_support@lemmy.ml
!support@lemmy.world

founded 2 years ago

MODERATORS

DarraignTheSane@lemmy.world

00Lemming@lemmy.world

L3s@lemmy.world