SSM (Simple SSH Manager) is a versatile command-line tool designed to streamline the management of SSH connections and user authentication.
Why SSM?
- Simplifies management of multiple SSH profiles
- Enhances security with built-in key rotation and encryption
- Saves time with quick connect commands and configuration imports
- Supports both SSH and RDP connections for comprehensive server management
How SSM helps:
- Centralized Configuration: Store all your SSH profiles in one secure, easy-to-manage location.
- Quick Connections: Connect to any server with a single command, eliminating the need to remember IP addresses and usernames.
- Enhanced Security: Regularly rotate SSH keys and encrypt sensitive data to maintain robust security practices.
Whether you're managing a handful of servers or a large-scale infrastructure, SSM simplifies your workflow, enhances security, and saves valuable time in your day-to-day operations.
To install SSM, download the latest release from the GitHub Releases page.
Choose the appropriate version for your operating system and architecture. For example, on Linux:
wget https://github.com/AshutoshPatole/ssm/releases/download/v0.2.0/ssm_Linux_x86_64.tar.gz
tar xzf ssm_Linux_x86_64.tar.gz
sudo mv ssm /usr/local/bin/Replace v.2.0 with the latest version number and adjust the filename according to your system.
SSM uses a YAML configuration file located at ~/.ssm.yaml. You can generate a template configuration using the template command. Here's a sample YAML configuration:
groups:
- name: production
environment:
- name: prod
servers:
- hostname: prod-server-1.example.com
alias: prod1
user: admin
- hostname: prod-server-2.example.com
alias: prod2
user: root
- name: development
environment:
- name: dev
servers:
- hostname: dev-server.example.com
alias: dev1
user: developer
- name: staging
servers:
- hostname: staging-server.example.com
alias: staging1
user: testerThis configuration defines two groups (production and development) with different environments and servers. You can customize this structure to fit your specific needs.
Register a new user for SSM:
ssm auth register --email user@example.comThis command registers a new user with the provided email address. It will prompt for a password securely.
Reset the password for an existing user:
ssm auth reset-password --email user@example.comThis command initiates the password reset process for the specified email address. A password reset link will be sent to the user's email.
Add a new SSH server configuration:
ssm add example.com --username root --group production --alias prod-server --environment prodThis command adds a new server configuration. It will prompt for the server's password if not provided.
| Argument | Description | Default Value |
|---|---|---|
| --username, -u | Username to use | root |
| --group, -g | Group to use | (required) |
| --alias, -a | Alias for the server | (required) |
| --environment, -e | Environment to use | dev |
| --rdp, -r | Flag to indicate it's an RDP connection | false |
Remove a server configuration:
ssm delete --server prod-serverThis command removes a server configuration from SSM.
| Argument | Description | Default Value |
|---|---|---|
| --server, -s | Server to delete | (required) |
| --clean-config, -c | Clean unused groups | false |
Import SSH configurations from a YAML file:
ssm import --file config.yaml --group productionThis command imports SSH configurations from a specified YAML file.
| Argument | Description | Default Value |
|---|---|---|
| --file, -f | File path | (required) |
| --group, -g | Group name | "" |
| --all, -a | Import all groups | false |
| --setup-dot | Setup dot files in servers | false |
Connect to a server:
ssm connect productionThis command connects to a server in the specified group.
| Argument | Description | Default Value |
|---|---|---|
| --filter, -f | Filter list by environment | "" |
Connect to a Windows server using RDP:
ssm rdp production --filter devThis command connects to a Windows server using RDP.
| Argument | Description | Default Value |
|---|---|---|
| --filter, -f | Filter list by environment | "" |
Upload your configuration and sensitive files to the cloud:
ssm sync push --email user@example.comThis command securely uploads your local SSM configuration, SSH keys, and dotfiles to the cloud. The following files are uploaded:
.ssm.yaml: Your SSM configuration file.ssh/id_ed25519: Your SSH private key.ssh/id_ed25519.pub: Your SSH public key.zshrc: Your Zsh configuration (if present).bashrc: Your Bash configuration (if present).tmux.conf: Your Tmux configuration (if present).ssh/config: Your SSH client configuration
All files are encrypted before upload using AES-256 encryption. The encryption key is derived from your password using PBKDF2 with SHA-256. Encrypted data is stored in Firebase, ensuring secure cloud storage.
| Argument | Description | Default Value |
|---|---|---|
| --email, -e | Email address | (required) |
Download your configuration from the cloud:
ssm sync pull --email user@example.comThis command downloads your SSM configuration from the cloud.
| Argument | Description | Default Value |
|---|---|---|
| --email, -e | Email address | (required) |
Rotate SSH keys for added security:
ssm rotate-key --all --private-key ~/.ssh/id_ed25519 --public-key ~/.ssh/id_ed25519.pubThis command rotates SSH keys for all or a specific group of servers.
| Argument | Description | Default Value |
|---|---|---|
| --all | Rotate keys for all servers | false |
| --group | Rotate keys for a specific group | "" |
| --private-key | Path to the Ed25519 private key | (required) |
| --public-key | Path to the Ed25519 public key | (required) |
Generate a template YAML configuration file:
ssm templateThis command generates a template YAML configuration file and saves it as .ssm-template.yaml in the user's home directory.
Check for and install updates:
ssm updateThis command checks for available updates and installs them if found.
Contributions are welcome! Please feel free to submit a Pull Request.
This project is licensed under the MIT License - see the LICENSE file for details.