Scroll to navigation

SSS_SSH_AUTHORIZEDKE(1) SSSD Manual pages SSS_SSH_AUTHORIZEDKE(1)

NAME

sss_ssh_authorizedkeys - get OpenSSH authorized keys

SYNOPSIS

sss_ssh_authorizedkeys [options] USER

DESCRIPTION

sss_ssh_authorizedkeys acquires SSH public keys for user USER and outputs them in OpenSSH authorized_keys format (see the “AUTHORIZED_KEYS FILE FORMAT” section of sshd(8) for more information).

sshd(8) can be configured to use sss_ssh_authorizedkeys for public key user authentication if it is compiled with support for either “AuthorizedKeysCommand” or “PubkeyAgent” sshd_config(5) options.

If “AuthorizedKeysCommand” is supported, sshd(8) can be configured to use it by putting the following directives in sshd_config(5):


AuthorizedKeysCommand /usr/bin/sss_ssh_authorizedkeys
AuthorizedKeysCommandUser nobody

If “PubkeyAgent” is supported, sshd(8) can be configured to use it by using the following directive for sshd(8) configuration:

PubKeyAgent /usr/bin/sss_ssh_authorizedkeys %u

OPTIONS

-d,--domain DOMAIN

Search for user public keys in SSSD domain DOMAIN.

-?,--help

Display help message and exit.

EXIT STATUS

In case of success, an exit value of 0 is returned. Otherwise, 1 is returned.

SEE ALSO

sssd(8), sssd.conf(5), sssd-ldap(5), sssd-krb5(5), sssd-simple(5), sssd-ipa(5), sssd-ad(5), sssd-sudo(5), sss_cache(8), sss_debuglevel(8), sss_groupadd(8), sss_groupdel(8), sss_groupshow(8), sss_groupmod(8), sss_useradd(8), sss_userdel(8), sss_usermod(8), sss_obfuscate(8), sss_seed(8), sssd_krb5_locator_plugin(8), sss_ssh_authorizedkeys(8), sss_ssh_knownhostsproxy(8), sssd-ifp(5), pam_sss(8). sss_rpcidmapd(5)

AUTHORS

The SSSD upstream - http://fedorahosted.org/sssd

01/16/2019 SSSD