The portal offers the possibility to automatically roll out SSH keys of portal users, who are members of your team, to the different servers. Under “SSH User keys” it is explained how you can do this as a user.
If you remove a team member from your team, all SSH keys associated with this use of the servers will also be removed. So you know for sure that the right people have access to your server!
In some cases this behavior is not desired. In that case it is possible as Owner or Administrator in the Security menu (tab: SSH Keys) to turn this functionality on or off per server. If you turn the option off, you will have to manually add keys to the dbt. ~/.ssh/authorized_keys files.
Furthermore, it is important to know:
- Only available for HPW servers
- Existing keys in ~/.ssh/authorized_keys will be overwritten
- This is a global action, so all environments on a server will get the same keys
- Only keys of users with the Owner, Administrator or Developer role will be rolled out
- Existing servers have the SSH key deployment option disabled, new servers (after March 2023) have this option enabled by default
SSH User Keys
As a portal user you have the option to add up to 5 SSH (public) keys to your account. If you have
the right role in your team your keys will be automatically rolled out to the dbt. servers and you can log in immediately (often within 15 minutes).
Only ssh-ed25519 and ecdsa-sha2-nistp256 are accepted as key type (not ssh-rsa!). If you don't know how to create an SSH key, here is an example:
- ssh-keygen -t ed25519 -C "description of your key"
We always recommend setting a password on your private key for extra security. The information you need is in the newly created .pub (eg: ~/.ssh/id_ed25519.pub) file.
Related Articles
SSH Tips for Professionals
SSH is one of the most used tools by us and by most developers. In this blog we share a number of tips that make SSH both more secure and efficient. These tips are not only applicable to our high performance web servers, but also to your own internal ...
Suppress SSH login notifications
We regularly see that the so-called deploy services suffer from output that we generate when logging in via SSH (e.g. pre-login/motd). This output has the function to show the user important information, but in the case of automatic processes this is ...
SaaS platform WiQhit chooses managed hosting from LinQhost
As of March 2020, personalization software company WiQhit.com uses LinQhost services. We now provide hosting and management of the WiQhit SAAS platform. “That move was an exciting step,” admits Paul Stam (CTO of WiQhit). “It’s like your child leaving ...
Creating a database backup
Before you make any changes to your web application, it is always a good idea to make a backup of your database first. If something goes wrong, you can easily go back to the original situation. Fortunately, making a database backup is quite easy, as ...
Phasing out Email Forwarding to External Addresses
Email forwarding, or the automatic forwarding of emails, is going to change. Increasingly stricter checks by spam filters make forwarding to external email addresses outside your domain less reliable. As a result, we have decided to stop this ...