Using OpenSSH Key for Authentication in IRIS on System based accounts
For internal IRIS accounts like Admin, _system, etc... could we incorporate so mechanism to use encryption keys for Authentication instead of using passwords.
We have written a couple of shell scripts that login via Terminal and execute EnableConfigItem to control stop/start via the cron scheduler on our systems.
Those shell scripts currently have the password hardcoded within them, and have been tasked by our Security Audit to limit access to those passwords.
So what better to use then an Encryption key, that just has to be regulated a couple of times a year instead of having to update the password in multiple scripts/ locations and no one can read the key to find out the password
Oct 9, 2023
Thank you for submitting the idea. The status has been changed to "Needs review".