I’ve been thinking about starting to use RancherOS especially in my Rancher clusters, however, I have a strict requirement for user auditing.
It appears that RancherOS doesn’t support multiple users on the system which I think is a significant flaw from a security perspective.
Ideally, I’d like to use something like Vault’s SSH backend (https://vaultproject.io/docs/secrets/ssh/index.html) to dynamical authenticate and create users for people logging into the machine.
Any chance something like this can/will be supported?
Otherwise, I’m afraid, this is a non starter for many companies.