Share via

Authentication to Linux machines should require SSH keys as part of compliance

Diksha Yadav 0 Reputation points
2025-02-21T14:52:19.8433333+00:00

We have common credentials to login in the VM when the authentication type is SSH keys stored in azure key vault. Different teams should not be able to login using other team's credentials/keys. We are accessing the VM via Bastion. How do we restrict the team members not to use other user keys as part of compliance. What are the steps to implement it?

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
8,554 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Akshay kumar Mandha 2,670 Reputation points Microsoft External Staff
    2025-02-21T22:13:12.2733333+00:00

    Hi Diksha Yadav,
    You can set up access policies in Azure Key Vault, use Azure's Role-Based Access Control, configure Azure Bastion to restrict access based on user roles, enable Just-In-Time access, and monitor and audit access using Azure Monitor and Azure Security Center. This ensures compliance and security.
    Please refer the below documentation for more information
    https://learn.microsoft.com/en-us/azure/key-vault/general/assign-access-policy?tabs=azure-portal
    https://learn.microsoft.com/en-us/azure/bastion/
    https://learn.microsoft.com/en-us/azure/role-based-access-control/
    https://learn.microsoft.com/en-us/azure/security/fundamentals/log-audit

    Please let me know if you have any querry.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.