marcocampos parent
In the past I've used Hashicorp Vault to handle this kind of situation. Granted, it's an additional piece of infrastructure to manage but Vault has been pretty solid for this kind of situation and others where you need to safely manage secrets.
If you dont mind, how did you set it up? I have vault right now but I dont know exactly how to use it for ssh'ing.
The process is pretty simple but their documentation is pretty good. When I was starting out I found this video which helped me get started: https://www.hashicorp.com/resources/manage-ssh-with-hashicor...