Uploaded image for project: 'Libcloud'
  1. Libcloud
  2. LIBCLOUD-182

Allow ssh_agent and/or password protected ssh keys in 'deploy_node'

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 0.10.1
    • Component/s: Compute
    • Labels:
      None

      Description

      After getting waylaid by incorrect error messages in paramiko, it appears that 'deploy_node' doesn't support either password protected ssh_keys or ssh_agent keys for ssh access.

      So with key access clouds you can only use a non-password protected key that is actually stored on the machine that is doing the deployment.

      ParamikoSSHClient turns off both the SSH Agent and the automatic key search facility. Any particular reason why?

        Activity

        Hide
        kami Tomaz Muraus added a comment -

        I'm not exactly sure how the protected SSH keys are handled in paramiko. IIRC it uses an interactive prompt which doesn't make a lot of sense, because in a lot of cases libcloud is used in different automation scripts.

        I will do a bit of research and see if and how we can handle this.

        Show
        kami Tomaz Muraus added a comment - I'm not exactly sure how the protected SSH keys are handled in paramiko. IIRC it uses an interactive prompt which doesn't make a lot of sense, because in a lot of cases libcloud is used in different automation scripts. I will do a bit of research and see if and how we can handle this.
        Hide
        kami Tomaz Muraus added a comment -

        I've modified the code in trunk to connect to the SSH agent and look for private keys in ~/.ssh directory if neither 'auth' and 'ssh_key' argument is passed to the deploy_node method.

        I will also open a new ticket for adding support for authenticating using password protected key files.

        Show
        kami Tomaz Muraus added a comment - I've modified the code in trunk to connect to the SSH agent and look for private keys in ~/.ssh directory if neither 'auth' and 'ssh_key' argument is passed to the deploy_node method. I will also open a new ticket for adding support for authenticating using password protected key files.

          People

          • Assignee:
            kami Tomaz Muraus
            Reporter:
            neilw Neil Wilson
          • Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development