Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Clark Smith
August 13, 2012, 7:47 pm
rate this thread
Re: X.509 certificates in SSH
If you are still searching for a solution have a look at https://github.com
/flix-/pam_openssh_x509. Its a collection of PAM modules for OpenSSH. What
they do is obtaining a x509 certificate from an LDAP server on every login,
validate it (trusted? not expired?) and synchronize the public key to the
appropriate authorized_keys file on the server. Besides access permissions
for OpenSSH can be granted through LDAP groups.
- » ssh on command line: force using a group size (prime size) of 1024 (and no...
- — Newest thread in » Secure Shell Forum