[GH-ISSUE #491] Feature Request: auto accept keys #127

New issue

Closed

opened 2026-05-07 00:19:16 +02:00 by BreizhHardware · 3 comments

BreizhHardware commented

2026-05-07 00:19:16 +02:00

Owner

Originally created by @tgeek77 on GitHub (Aug 9, 2024).
Original GitHub issue: https://github.com/ovh/the-bastion/issues/491

Our use case:

We would like to use The Bastion with our automated testing environment. Our tests include creating a new VM with terraform and once it is up, we ssh in and run some tests.

We would like The Bastion to handle the ssh portion, however since a new VM is being created on every key, when we log in the first time, we get an ssh message asking us if we want to use the key (Yes/No/Fingerprint). This mandatory question breaks automation and so we have to use direct ssh instead.

It would be great to have an autoaccept function. In most cases, this would be a security risk however if you want to use The Bastion in an internal-only trusted environment, this would be a huge help with minimal risk.

Originally created by @tgeek77 on GitHub (Aug 9, 2024). Original GitHub issue: https://github.com/ovh/the-bastion/issues/491 Our use case: We would like to use The Bastion with our automated testing environment. Our tests include creating a new VM with terraform and once it is up, we ssh in and run some tests. We would like The Bastion to handle the ssh portion, however since a new VM is being created on every key, when we log in the first time, we get an ssh message asking us if we want to use the key (Yes/No/Fingerprint). This mandatory question breaks automation and so we have to use direct ssh instead. It would be great to have an autoaccept function. In most cases, this would be a security risk however if you want to use The Bastion in an internal-only trusted environment, this would be a huge help with minimal risk.

BreizhHardware closed this issue

2026-05-07 00:19:16 +02:00

BreizhHardware commented

2026-05-07 00:19:17 +02:00

Author

Owner

@speed47 commented on GitHub (Sep 25, 2024):

This feature is already available, you can set it per-account on the bastion, the option you're looking for is accountModify --egress-strict-host-key-checking accept-new (see https://ovh.github.io/the-bastion/plugins/restricted/accountModify.html?highlight=accountmodify#cmdoption-accountModify-egress-strict-host-key-checking )

@speed47 commented on GitHub (Sep 25, 2024): This feature is already available, you can set it per-account on the bastion, the option you're looking for is ``accountModify --egress-strict-host-key-checking accept-new`` (see https://ovh.github.io/the-bastion/plugins/restricted/accountModify.html?highlight=accountmodify#cmdoption-accountModify-egress-strict-host-key-checking )

BreizhHardware commented

2026-05-07 00:19:17 +02:00

Author

Owner

@tgeek77 commented on GitHub (Sep 25, 2024):

Thanks, I'll check it out.

@tgeek77 commented on GitHub (Sep 25, 2024): Thanks, I'll check it out.

BreizhHardware commented

2026-05-07 00:19:17 +02:00

Author

Owner

@speed47 commented on GitHub (Oct 16, 2024):