question regarding SSH and interoperability with PKI

From: Louise Popyk (Louise.Popyk_at_entrust.com)
Date: 05/07/04

  • Next message: Wayne.Schmidt_at_MorganStanley.com: "Re: SSH scripting with Net::SSH module"
    To: "'secureshell@securityfocus.com'" <secureshell@securityfocus.com>
    Date: Thu, 6 May 2004 23:00:14 -0400 
    
    

    Hello,
    I am working with a customer who would like to use his existing keys and
    certificates issued by his CA in support of strong authentication with
    OpenSSH. It is unclear from the documentation if openssh supports importing
    existing keys and certificates and if so in what format it's expecting the
    keys and certs. Could you please let me know if Openssh can work with RSA or
    DSA keys generated as part of an off the shelf PKI offering as opposed to
    the ssh-keygen function? and if so what format does ssh-add expect the keys
    and certs to be in.
    Thanks much,

    Louise Popyk, CISSP
    Systems Engineer
    Phone: (313) 359-4393
    Entrust
    Securing Digital Identities
    & Information
    <<http://www.entrust.com>>

    Louise Popyk, CISSP
    Systems Engineer
    Phone: (313) 359-4393
    Entrust
    Securing Digital Identities
    & Information
    <http://www.entrust.com>


  • Next message: Wayne.Schmidt_at_MorganStanley.com: "Re: SSH scripting with Net::SSH module"

    Relevant Pages

    • RE: [USN-612-2] OpenSSH vulnerability
      ... The update for Ubuntu 8.04 was as ... (part of the ssh-server install was a blacklist of keys not to use). ... particularly affects the use of encryption keys in OpenSSH. ... amd64 architecture: ...
      (Ubuntu)
    • [Full-disclosure] [USN-612-2] OpenSSH vulnerability
      ... particularly affects the use of encryption keys in OpenSSH. ... Ubuntu) are based on Debian. ... amd64 architecture: ...
      (Full-Disclosure)
    • [USN-612-2] OpenSSH vulnerability
      ... particularly affects the use of encryption keys in OpenSSH. ... Ubuntu) are based on Debian. ... amd64 architecture: ...
      (Bugtraq)
    • Re: question regarding SSH and interoperability with PKI
      ... OpenSSH read user identity and server host keys from files in PEM format. ... After this is good to create OpenSSH public key - command is: ...
      (SSH)
    • Institutional OpenSSH Key Deployment -- How?
      ... and various SSH FAQs for, and haven't come up with very much, so I -do- ... we're trying to encourage people to use public keys and passphrases ... OpenSSH is that there aren't any particularly obvious ways to distribute ... We have an institutional LDAP user directory, ...
      (comp.security.ssh)