EZSSH uses SSH Certificates to authenticate to endpoints. Since this is a OpenSSH supported protocol, no custom code has to run on your endpoints for authentication to work. By adding your EZSSH Certificate to your TrustedUserCAKeys your endpoint will start working with EZSSH.
In this page we will go through how to do this using cloud init. You might also be interested in:
If you want to only set up the Linux principals of an access policy click the “Get Script” button of that access policy.
Login to the Azure portal.
Click on Create a resource.
Select the resource type, in this example we will do an ubuntu server.
Enter the resource basic information.
Click “Next: Disks”
Set your disk preferences.
Click “Next: Networking”
Set your networking preferences.
Click “Next: Management”
Set your management preferences.
Click “Next: Advanced”
In the Custom Data field, paste the Cloud init you got from EZSSH.
Click Review + Create.
Create your resource.
Your EZSSH policy is ready to be used with this endpoint.
Login to your AWS Console.
Select the region where you want to deploy.
Navigate to EC2 Instances.
Click on Launch instance.
Select your OS
Select your instance size.
Click on “Next: Configure Instance Details”
Scroll down to the bottom
Copy the content of the cloud init file you downloaded into the user data field.
Continue with your regular EC2 Instance deployment.
Your EZSSH policy is ready to be used with this endpoint