SSH

SSH vs. X.509 Certificates

SSH vs. X.509 Certificates

By: Linda Ikechukwu

SSH
Although SSH certificates are the most secure way to regulate SSH access, they are underutilised. They’re also frequently confused with X.509 (aka TLS) certificates. This article explains what SSH certificates are, why you should be using them, and how they differ from their more popular X.509 counterparts.
Clever Uses of SSH Certificate Templates

Clever Uses of SSH Certificate Templates

By: Carl Tashian

We added SSH certificate templates to step-ca, and it opened up some unexpected opportunities.
 🤦‍♂️ Facepalm Lesson One: The Delayed Aha Moment
What became clear in our product-led research is that we made a few mishaps. And there was one in particular that we wanted to fix ASAP. A series of go-to-market learnings and mishaps from smallstep.
DIY SSH Bastion Host

DIY SSH Bastion Host

By: Carl Tashian

How to create and deploy a simple and minimal bastion host on Ubuntu 20.04 LTS.
SSH Emergency Access

SSH Emergency Access

By: Carl Tashian

Learn how to prepare for emergency access to your SSH hosts.
SSH Agent Explained

SSH Agent Explained

By: Carl Tashian

The SSH agent acts behind the scenes to keep you safe. Here’s how it works.
SSH Tips & Tricks

SSH Tips & Tricks

By: Carl Tashian

A few of our favorite SSH tricks and tips sure to improve your daily experience.
Smallstep SSH

Smallstep SSH

By: Mike Malone

It took a lot of late nights and weekends to get here. I’m incredibly thankful for the work of our fantastic team, early access customers, and to their families for behind the scenes support. Today, we’re excited to announce the output of that work: the general availability of Smallstep SSH Professional Edition.
DIY Single Sign-On for SSH

DIY Single Sign-On for SSH

By: Carl Tashian

Let’s set up Google SSO for SSH! We’ll use OpenID Connect (OIDC), SSH certificates, a clever SSH configuration tweak, and Smallstep’s open source packages.
If you’re not using SSH certificates you’re doing SSH wrong
SSH has some pretty gnarly issues when it comes to usability, operability, and security. The good news is this is all easy to fix. SSH is ubiquitous. It’s the de-facto solution for remote administration of *nix systems. SSH certificate authentication makes SSH easier to use, easier to operate, and more secure.