Skip to content

Working with Cloud Keys

Beginner 5 minutes Auto-generated screenshots

Overview

Cloud Keys are managed credentials that allow you to launch instances and access cloud resources across AWS, Azure, GCP, Alibaba Cloud, OVH, and OpenStack. RosettaHub automatically provisions keys for your authorized regions as part of the MetaCloud compute layer.

Prerequisites

  • [ ] RosettaHub account
  • [ ] At least one cloud account connected

Understanding Key Types

RosettaHub has two types of keys:

Type Purpose
Cloud Keys Cloud provider credentials (IAM keys, service principals, service accounts) for launching resources
Key Pairs SSH keys for connecting to instances

Viewing Your Cloud Keys

Step 1: Open the Keys Panel

Click Keys in the sidebar to open the key management panel.

Step 2: Browse Available Keys

You'll see your Cloud Keys organized by:

  • Cloud Provider (AWS, Azure, GCP)
  • Region (us-east-1, eu-west-1, etc.)

Each key shows:

  • Associated cloud account
  • Region and VPC
  • Allowed instance types

Launching with Cloud Keys

Step 1: Select a Key

Click on a Cloud Key to select it.

Step 2: Launch an Instance

Click Launch or right-click and select Launch.

Step 3: Configure and Deploy

  1. Select an image or formation
  2. Choose instance type (from allowed list)
  3. Click Launch

Retrieving Cloud Storage

Cloud Keys can sync your cloud storage to RosettaHub.

Retrieve Object Storage

Map S3 buckets, Azure Blob containers, or GCS buckets:

  1. Select a Cloud Key
  2. Right-click → Retrieve Object Storages
  3. Storage appears in the Object Storages panel

Retrieve File Storage

Map network file systems (EFS, Azure Files, etc.):

  1. Select a Cloud Key
  2. Right-click → Retrieve File Storages

Retrieve Block Storage

Map disk volumes and snapshots:

  1. Select a Cloud Key
  2. Right-click → Retrieve Block Storages or Retrieve Snapshots

Creating SSH Key Pairs

For SSH access to instances, create a Key Pair:

Step 1: Create Key Pair

  1. In the Keys panel, click Create Key Pair
  2. Or right-click → Create Key Pair

Step 2: Configure the Key

Field Description
Label Descriptive name for the key
Cloud Target cloud provider

Step 3: Download Private Key

Critical Step

Download your private key immediately. It cannot be retrieved later.

  1. Click Download Private Key
  2. Save to a secure location
  3. Set permissions: chmod 600 keyfile.pem (Linux/Mac)

Sharing Keys

Share Cloud Keys or Key Pairs with others:

  1. Select the key
  2. Right-click → Share
  3. Choose recipients:
  4. Specific users
  5. Groups
  6. Organizations
  7. Set access level
  8. Click Share

Best Practices

Security

  • Store private keys securely
  • Never share private keys via email or chat
  • Use different keys for different projects

Organization

  • Use descriptive labels (e.g., "Production-US-East")
  • Document which formations use which keys
  • Review and clean up unused keys periodically

Permissions

  • Request only the regions you need
  • Use appropriate instance types for your workload
  • Contact your admin if you need additional permissions

Next Steps