When comparing ManageEngine Key Manager Plus vs SSH KeyBox, the Slant community recommends ManageEngine Key Manager Plus for most people. In the question“What are the best managers for SSH keys?” ManageEngine Key Manager Plus is ranked 2nd while SSH KeyBox is ranked 5th.
Specs
Ranked in these QuestionsQuestion Ranking
Pros
Pro Works on both Windows and Linux
Pro Let's Encrypt Integration
Pro Free edition availability
Free for up to 5 keys.
Pro Can audit sessions
Keybox can audit sessions on a historical basis, compared to Userify which requires that you use other tools (like auditd and greylog2) to do that.
Pro Free and open source
SSH KeyBox is free and open source. The source code is hosted on GitHub and it's released under the Apache 2.0 License.
Pro Acts as a bastion host
The ssh KeyBox server is its own bastion host.
Cons
Con Clunky interface, time consuming to get up and running with
The key manager stores the keys directly inside the tool. It's an unusual choice and slows down deployment. Each key has to be individually associated with both a user and a server, which are not easily organized into groups.
Con Time consuming to deploy, not a robust method of keeping updated
Con Keybox doesn't use real SSH, so things like remote automation and scp/sftp aren't possible
You may be able to manage those out of band, however, but they're not possible directly in the browser from your OpenSSH client.
Con Runs through the browser
KeyBox is browser-based and is accessed through a web browser. This adds some insecurity and potential attack vectors to the platform.