3xban wrote:If they are not technologically savy, you may want to stick with the traditional username/password. If they have a support person in place you can work with them to setup SFTP with keys.
I'd recommend that instead of just setting them up with a user and password, because they may not be technologically savvy, that he should create an installer / script that sets everything up for them
It wouldn't take that long, but using unique keys could be a bit problematic to automate (if there's many users), though not impossible (but if you do, make damn sure you do it in a secure way hehe
Do NOT forget to disable usage of the SSH shell / terminal (except SFTP) functionality in case you go with this, because if a user is compromised, these credentials could be used to log into an interactive terminal, where remote code execution on the server would be possible.
If they do need (SSH) terminal access, I suggest they of course run with least privileges possible and are not able to sudo unless there is a good reason. Perhaps even jail the users to their own directory without the possibility of symlinking out of there
Just a few good advises you could perhaps use, it's up to you in the end of course