Dear all,
EUMETSAT is improving the security of the default setup and harmonise the service with ECMWF by enforcing SSH key-based authentication for all new VMs. SSH key authentication provides a more secure alternative to password-based authentication.
From now on, all new VMs configured will only be authenticated with SSH keys for security.
Why Use SSH Key Authentication?
• Increased Security: SSH keys are much longer and more complex than passwords, making them harder to crack.
• No Password Management: With SSH keys, there are no passwords to remember or rotate, reducing administrative overhead.
How to create and use SSH keys?
For detailed instructions on setting up SSH key authentication for new VMs, please refer to this documentation: https://confluence.ecmwf.int/pages/viewpage.action?pageId=430705715.
How to improve the security of the existing VMs?
We want to remind that EWC tenants are responsible on the all VMs in the EWC and *we strongly recommend to change to SSH keys*. To retrospectively enforce the use of SSH-keys to existing VMs, please follow these steps:
• Navigate to the Morpheus dashboard and log in with your credentials.
• Go to Instances from the main menu.
• Choose the instance.
• Click on Actions and then select Run workflow.
• Choose the Enforce SSH Key Authentication workflow.
• Follow the prompts to complete the workflow.
If you have any questions or concerns, please don't hesitate to reach out to us.
We appreciate your understanding and cooperation as we work towards a more secure server environment.
Thank you,
EWC Team