You got it backwards, master connects to Slave using standard SSH Pub/Private key auth. So, since the master is connecting to slave, you are not putting Slave's private keys on Master, you are putting Master's public key on Slave. While this looks like same thing physically, logically it explains why private key belongs to Master. Of course for extra convenience, you can use different keypairs for different slaves - but that is optional.
-M On Sunday, September 18, 2016 at 6:57:58 PM UTC-7, John Cho wrote: > > Hi, > I am reading thru how to set up slaves on Jenkins using ssh keys. Read > thru about three articles on how to do that. According to them, the setup > is based upon using the slave as a ssh server with public and private keys > and it adds the slave's private key to the Jenkins master's credential > instead of the slave's public key. Private key should never be shared. > Any thought on this practice? Or, am I missing any? Thanks in advance. > > -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/f94c8cf5-145d-40bf-b3a2-745f83bd7570%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.