User:Kaldari/Migrating to new ssh keys

Back-up you old keys.

Generate new keys (at least 4096 bit): ssh-keygen -t rsa -b 4096

Make sure your ssh config is good:

Host bast1002.wikimedia.org
    ProxyCommand none
    ControlMaster auto

Host *.wikimedia.org *.wmnet !gerrit.wikimedia.org !git-ssh.wikimedia.org
    User kaldari
    ProxyCommand ssh -a -W %h:%p bast1002.wikimedia.org
    IdentitiesOnly yes
    IdentityFile ~/.ssh/id_rsa

Host *.eqiad.wmflabs
    User kaldari
    ProxyCommand ssh -a -W %h:%p kaldari@primary.bastion.wmflabs.org
    IdentityFile ~/.ssh/ldap_rsa

Host *.wmflabs
    User kaldari

Host *.wmflabs.org
    User kaldari
    IdentityFile ~/.ssh/ldap_rsa

Add new keys to ToolForge: https://toolsadmin.wikimedia.org/profile/settings/ssh-keys

Add new keys to Gerrit account: https://gerrit.wikimedia.org/r/#/settings/ssh-keys

Update ssh key in puppet: https://gerrit.wikimedia.org/r/#/c/398331/