services / Azure / Azure SSH public key resource
An sshPublicKeys resource is a stored, reusable SSH public key object in Azure Compute that can be referenced when provisioning VMs.
The resource holds only the non-secret public key component; it is not bound to a running VM and contains no private credential material.
Microsoft.Compute/sshPublicKeys/generateKeyPair/action
This action generates and RETURNS a new SSH private/public key pair, handing the caller usable private credential material that can authenticate to any VM provisioned with the corresponding public key.
Risks
Scope: HIGH
This privilege may grant access to sensitive data from a single organizational function, or allow interruption of a service supporting a single organizational function.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog