E. Dunham
E. Dunham
From a background in DevOps, Systems Administration, and SRE, edunham has recently taken the leap into developer advocacy to spread information about which tools and approaches fit which problems well, and to gather real-world feedback that helps Okta improve its products. Outside of work, you'll often find them anonymously automating annoyingly manual workflows in their favorite online games, gardening, and getting interrogated about whether they have or are food by several chickens and a cat.
DevOps.js Conf 2022DevOps.js Conf 2022
32 min
Passwordless Auth to Servers: hands on with ASA
These days, you don't need a separate password for every website you log into. Yet thanks to tech debt and tradition, many DevOps professionals are still wrangling a host of SSH keys to access the servers where we sometimes need to be. With modern OAuth, a single login and second factor to prove your identity are enough to securely get you into every service that you're authorized to access. What if SSHing into servers was that easy? In this workshop, we'll use Okta's Advanced Server Access tool (formerly ScaleFT) to experience one way that the dream of sending SSH keys the way of the password has been realized.
- we'll discuss how ASA works and when it's the right tool for the job- we'll walk through setting up a free trial Okta account to use ASA from, and configuring the ASA gateway and server on Linux servers- we'll then SSH into our hosts with the ASA clients without needing to supply an SSH key from our laptops- we'll review the audit logs of our SSH sessions to examine what commands were run