Red Hat Bugzilla – Bug 888983
[RFE] ssh keys generated by horizon have no passphrase
Last modified: 2016-04-26 10:13:58 EDT
It's been pointed out to us by multiple users that when a user generates a new ssh keypair in horizon, there is no passphrase on that keypair, which is unsecure.
Ideally it would prompt for a passphrase for the keypair before generating, and generate the keypair with that passphrase.
Nova and Horizon supports uploading of keys created outside of OpenStack, so this functionality is available via that mechanism.
However, if we think that it's specifically needed to have support for key generation w/ passphrase inside of OpenStack, this would be an RFE on both Nova and Horizon.
In any case it is an RFE so moving to FutureFeature and next release for further investigation
I'm going to close this as "won't fix". The support in nova is intended to be basic and for convenience. There is also the ability to upload keys that you create yourself. I think if you want anything more than the basic support, you should generate and upload your own key.