nameis the name of the service
commandsays to run a bash series of commands to copy the keys and start the bastion service itself. We copy the keys from a known location which will be uploaded in the next step
portsdescribes the service listening on 22, which is standard for SSH
hostnamedescribes the hostname that will be generated for the bastion service
public-keywith no file extension. An example file with two keys might look like the following:
/var/lib/bastion/and make sure you select the
bastionservice checkbox. You do not need to select "Secret" because this file only contains public keys which are not secrets.
bastionservice. You can find it in the
Hostname URLssection shown below.
bastionas shown below: