How to get rid of bastion certificate while using boundary connect?


I have created a target, host set and a host to access my bastion instance via bounday. I can access it with no issues using the following command. However, I don’t want to provide a bastion certificate to my team. How can I provide this certificate in Boundary itself instead of distributing the key?

boundary connect ssh -target-id ttcp_xxxxx -host-id hst_yyyy -- -l ubuntu -i .ssh/bastion-certificate.pem

This is how I want to connect to it

boundary connect ssh -target-id ttcp_xxxxx -host-id hst_yyyy

Any help would be appreciated.


HCP Boundary supports this type of credential injection – see the Learn guide.