Re: add keys and certificate to forwarded agent on remote host

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On Tue, 18 Sep 2018, Tim Jones wrote:

> Apologies if I'm teaching granny to suck eggs here, or my
> understanding of SSH is all wrong. But surely SSH certificates were
> only ever intended to be for authentication, not for authorization ?

certificates contain several built-in authorisation features (extensions
and critical options) and the supporting configuration options
AuthorizedPrincipalsFile and AuthorizedPrincipalsCommand are often
used to implement authorisation schemes.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev



[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux