DEV Community

Huy Dang
Huy Dang

Posted on

Securely connect via SSH without an SSH key (AWS/Google Cloud/Azure)

1.AWS Systems Manager

Image description

The diagram above is referenced from the article: https://medium.com/@vtstanescu/ssh-alternative-in-aws-d0f67a5a460d

Outstanding features:

2.IAP and OS login

Image description
Outstanding features:

  • Simplified SSH Access: OS Login enables you to use your Google identity to SSH into your Linux VMs, eliminating the need to manage SSH keys.
  • Enhanced Security: IAP provides an additional layer of security by controlling access to your applications and VMs based on user identity and context. This means that users can only access resources if they have the appropriate permissions, regardless of their network location.
  • Context-Aware Access: IAP can take into account various contextual factors, such as user location, device type, and time of day, to make more informed access decisions.

See details at
https://github.com/GoogleCloudPlatform/iap-desktop

3.Azure Bastion host

Image description

Outstanding features:

  • No Public IP Required: Eliminates the need to expose your VMs to the public internet via public IP addresses. This significantly reduces the attack surface and protects your VMs from unauthorized access attempts.
  • Azure AD Integration: Leverages Azure Active Directory for authentication, allowing you to manage access to your VMs using your existing identity infrastructure.

Thank you for reading the article

Top comments (0)