FW: Returned post for secureshell@securityfocus.com
From: Robert Campbell (robert.campbell_at_ecommnet.co.uk)
Date: 06/27/05
- Previous message: Hans Kramer: "Single Sign on with Kerberos/OpenSSH (see also OpenSSH-3.9p1 and MIT Kerberos by Matt Miller)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 27 Jun 2005 20:10:42 +0100 To: <secureshell@securityfocus.com>
Note : newbie to OpenSSH.
I understand that x.509 certificates can be used to authenticate users
to an openssh server.
Am I correct that this can be done without the need for a CA or OCSP
responder?
Am I correct that this can be done using simple entries in the
authorized_keys file?
If the above is true can someone help me with the generation and format
of the entry in the authorized_keys file
So far I have got
x509v3-sign-rsa DN CERT_BLOB
It's the format of the cert blob I can't work out.
I have read Roumen Petrov's README.X509v3 file but cant quite make the
final leap....
http://www.roumenpetrov.info/openssh/x509g2/README.x509v3
Anyone experienced using smartcards for login to OpenSSH in this way?
Robert Campbell
Managing Director
ecommnet ltd.
Aidan House
Tynegate Precinct
Sunderland Road
Gateshead
Tyne and Wear
UK NE83HU
T:+44 191 478 8315
F:+44 191 478 9466
M:+44 7801 270 264
W: www.ecommnet.co.uk
Solutions for lap-top and mobile security, email archiving and anti-SPAM
- Previous message: Hans Kramer: "Single Sign on with Kerberos/OpenSSH (see also OpenSSH-3.9p1 and MIT Kerberos by Matt Miller)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
