Managing trusted keys
By default, Bamboo accepts communication from all repository hosts that authenticate with SSH. You can secure communication between Bamboo and repositories by setting up trusted key management.
- Prevent Bamboo from connecting to unauthorized services via SSH.
- Manually authorize SSH key of the repository hosts upon first connection.
- Automatically authorize repository hosts that were added to the trusted keys list.
Trusted keys management is available only for restricted administrators.
Enabling trusted keys management in Bamboo
To enable SSH key management:
- Go to Administration > Security > Security settings > Global security and permission properties.
- Select the Manage trusted keys check box:
- The Trusted keys configuration page is now available in Administration > Security:
- When Bamboo initiates the SSH connection with a repository host for the first time, you can decide whether to authorize the connection:
Adding and deleting trusted keys in Bamboo
You can manage the authorized public SSH keys in the Trusted keys page.
To add a trusted key:
- Go to Administration > Security > Trusted keys.
Specify the host URL, for example:
- Paste the public key that you generated for your repository host and click Add.