On May 3, 2017, at 5:44 PM, Stephen Harris <lists@xxxxxxxxxx> wrote: > On Thu, May 04, 2017 at 09:37:59AM +1000, Adam Eijdenberg wrote: >> Hi Devin, have you looked at using openssh certificates to help manage > [...] >> While the feature has been around for a while now (and is really >> useful), there doesn't seem to be huge amount of documentation around >> it. I found the following useful when getting a client of my running > > Yeah, when I wrote about it last year I didn't find many clients > (just the openssh client) understood it: > https://www.sweharris.org/post/2016-10-30-ssh-certs/ > > How many clients do work with CA signed keys? My AsyncSSH package for Python supports OpenSSH-format certificates. For more info, check out http://asyncssh.readthedocs.io <http://asyncssh.readthedocs.io/>. -- Ron Frederick ronf@xxxxxxxxxxxxx _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev