Reference Guide
...
Cloud PAM
Importing Devices from the Goo...

SSH Key Configurations for GCP Devices

If the devices imported from GCP have the required configuration to log in with an SSH key, Kron PAM can provide a seamless connection to the device. Otherwise, the global username and password need to be defined for each device group. To use an SSH key for GCP devices:

Get the SSH key name stored in the device properties of each device:

  1. Navigate to Device Management > Device Inventory.
  2. Right-click an Azure Device, and select Show Properties (The device’s SSH Key name is stored in the sshKeyName property)
  3. Write down the value of this property to be used for the SAPM module.
SSH Key Name
SSH Key Name
ο»Ώ

Enable SSH Key Connection to Device Groups:

  1. Navigate to Device Management > Device Groups.
  2. Right-click the Device Group the GCP devices are imported to, and select Show Properties.
  3. Select the addDeviceSshKeyToUserSelection property and set the value as true.

Upload SSH key to Kron PAM and enable connection to the device:

  1. Navigate to SAPM > SAPM Accounts.
  2. Fill in the required fields (The Name field must be exactly equal to the value of sshKeyName in the Device Property.)
  3. Select SSH Key in the Type field.
  4. Copy the contents of the SSH key into the Secret Data field.
SSH Key in the SAP
SSH Key in the SAP
ο»Ώ

The SSH keys must be in the OpenSSH key format. This means that the value put into the Secret Data field should: start with the β€œ---- BEGIN SSH2 PUBLIC KEY ----” and end with the β€œ---- END SSH2 PUBLIC KEY ----” indicators.

ο»Ώ