Generate Custom SSH Keys for Developers on Your Amazon Instances

The process is pretty simple. Let’s say you use an ssh key (.pem) file generated by Amazon. However you use the same key on a few of your instances and you’d like to allow a developer access to only one at a time.

To do that, you need to generate a custom ssh key for your developer to log into one machine:

  1. Generate a custom ssh key (private)
  2. Generate a public key
  3. Change permissions of the folders and ssh keys container the newly generated keys on both your machine and server
  4. Copy the public key to the target ssh key
#private key
openssl genrsa -des3 -out MyKey.pem
#public key
ssh-keygen -y -f MyKey.pem >
chmod 400 MyKey.pem
chmod 700 .ssh
chmod 600 .ssh/authorized_keys -> server side
#copy to server
copy the public key to .ssh/authorized_keys -> server side

That’s it! You should end up with keys that your developer can use on only the servers you allow.

Leave a Reply

Your email address will not be published. Required fields are marked *