These days, you don't need a separate password for every website you log into. Yet thanks to tech debt and tradition, many DevOps professionals are still wrangling a host of SSH keys to access the servers where we sometimes need to be. With modern OAuth, a single login and second factor to prove your identity are enough to securely get you into every service that you're authorized to access. What if SSHing into servers was that easy? In this workshop, we'll use Okta's Advanced Server Access tool (formerly ScaleFT) to experience one way that the dream of sending SSH keys the way of the password has been realized.
- we'll discuss how ASA works and when it's the right tool for the job
- we'll walk through setting up a free trial Okta account to use ASA from, and configuring the ASA gateway and server on Linux servers
- we'll then SSH into our hosts with the ASA clients without needing to supply an SSH key from our laptops
- we'll review the audit logs of our SSH sessions to examine what commands were run