Skip to content

sshkm/django-sshkm

BranchesTags

Repository files navigation

django-sshkm Build Status

django-sshkm is a Django based ssh-key management tool.
It stores ssh-public-keys in a database and combines them in groups (Development, Operations, Externals, ...). You can assign these groups to operating system users on target hosts and are able to deploy your configurations.

Do you have hundreds of hosts/servers and dozens of users or other systems which want to connect to these using SSH?
Do you know the problem when an employee leaves the company but knows many passwords of OS-users and now you should better change all your passwords?
Do you want to have better control over who can connect to your hosts using SSH?
Then django-sshkm is perfect for you.

Demo

There is a demo available:
URL: http://sshkm.guruz.at
USER: admin
PASSWORD: admin

Requirements

  • Linux
  • RabbitMQ
  • Python >= 2.7
  • Django >= 1.8
  • Celery >= 4.0.0
  • Django compatible database like (SQLite, MySQL/MariaDB, PostgreSQL, ...)

Used Technologies

Setup

  • Install a RabbitMQ server.
  • Install a Django compatible database.
  • Install SSHKM:
    you will need some development tools and libraries: gcc python python-devel python-pip mariadb-devel postgresql-devel openldap-devel httpd-devel
pip install django-sshkm
  • Configure /etc/sshkm/sshkm.conf (create it if it does not exist)
    You can find an example in your install directory (example: /usr/lib/python2.7/site-packages/sshkm/sshkm.conf).
    If you use sqlite make sure that the user running celery (see next step) has read and write permissions to the db-file.
  • Install a webserver which runs wsgi
    Example Apache httpd:
Alias /static/ /usr/lib/python2.7/site-packages/sshkm/static/

<Directory /usr/lib/python2.7/site-packages/sshkm/static/>
  Require all granted
</Directory>

WSGIScriptAlias /sshkm /usr/lib/python2.7/site-packages/sshkm/wsgi.py/
WSGIDaemonProcess sshkm user=apache group=apache
WSGIProcessGroup sshkm

<Directory /usr/lib/python2.7/site-packages>
  <Files wsgi.py>
    Require all granted
  </Files>
</Directory>
  • Run celery
cd /usr/lib/python2.7/site-packages
celery worker -A sshkm -l info

Firewall & SELinux

Be aware of firewall and SELinux issues

You can find more informations in the wiki: https://github.com/sshkm/django-sshkm/wiki

About

A Django based ssh-key management tool

Resources

Readme

License

GPL-3.0 license
Activity

Stars

7 stars

Watchers

4 watching

Forks

5 forks
Report repository

Releases 10

add ajax refresh in multi-host-deployment Latest
Mar 21, 2017
+ 9 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages