This repository contains all of the ssh public keys needed to allow Acquia Support access to remote servers.
This file contains all of the Acquia IPs that will be used to access remote systems. Periodcially, Acquia updates its IPs. Please "watch" this file via github in order to ensure you are notified when IPs are modified.
This file contains all of the ssh public keys that Acquia Support will use to access remote systems. This format also enforces access through Acquia's networks via IP whitelisting using the IPs in the ip_whitelist file.
This file contains all of the ssh public keys that Acquia Support will use to access remote systems. This format omits and IP whitelisting and should be used when there is a VPN required to access the remote systems.
- R+W+X for all site docroot files within dev, staging and production.
- R+W+X for all VCS folders and files.
- X for drush folder, RW if you would like acquia_support to be able to update drush itself.
- R+W+X for mysql databases, ability to run mysql.
- R for all log files.
mkdir -pm 700 ~/.ssh > /dev/null 2>&1 ; curl --silent --write-out %{http_code} https://raw.githubusercontent.com/acquia/support_keys/master/authorized_keys --output ~/.ssh/authorized_keys_dl 2> /dev/null | grep 200 > /dev/null && mv -f ~/.ssh/authorized_keys_dl ~/.ssh/authorized_keys && chmod 600 ~/.ssh/authorized_keys > /dev/null 2>&1
Run 'crontab -e' and add this line:
0 0 * * * mkdir -pm 700 ~/.ssh > /dev/null 2>&1 ; curl --silent --write-out %{http_code} https://raw.githubusercontent.com/acquia/support_keys/master/authorized_keys --output ~/.ssh/authorized_keys_dl 2> /dev/null | grep 200 > /dev/null && mv -f ~/.ssh/authorized_keys_dl ~/.ssh/authorized_keys && chmod 600 ~/.ssh/authorized_keys > /dev/null 2>&1
This crontab runs every day at midnight (you may change the time), creating and updating a folder which contains the authorized public key files of Acquia Client Advisors.
Acquia Remote Administration does not support remote access of customer servers via VPN.