1.8 KiB
| page_title | sidebar_current |
|---|---|
| SSH Sharing - Vagrant Share | share-ssh |
SSH Sharing
Vagrant share makes it trivially easy to allow remote SSH access to your
Vagrant environment by supplying the --ssh flag to vagrant share.
Easy SSH sharing is incredibly useful if you want to give access to a colleague for troubleshooting ops issues. Additionally, it enables pair programming with a Vagrant environment, if you want!
SSH sharing is disabled by default as a security measure. To enable
SSH sharing, simply supply the --ssh flag when calling vagrant share.
Usage
Just run vagrant share --ssh!
When SSH sharing is enabled, Vagrant generates a brand new keypair for SSH access. The public key portion is automatically inserted into the Vagrant machine, and the private key portion is uploaded to the server managing the Vagrant shares. This private key is encrypted using a password that you will be prompted for. This password is never transmitted across the network by Vagrant, and is an extra layer of security preventing us or anyone who may know your share name from easily accessing your machine.
After running vagrant share --ssh, it will output the name of your share:
TODO
Anyone can then SSH directly to your Vagrant environment by running
vagrant connect --ssh NAME where NAME is the name of the share outputted
previously.
TODO
If the private key is encrypted (the default behavior), then the connecting person will be prompted for the password to decrypt the private key.
Additional flags are available such as --ssh-once to add another layer
of security to your SSH shared session. With this flag active, only one
vagrant connect --ssh can be attempted before the keypair is destroyed,
preventing any future connections.