thr3ads.net - openssh unix dev - CA Signed Public Key User Authentication does not honor ~/.ssh/authorized

If this information is useful, please help other people find it:
Share via:

Virender Khatri

2013-Sep-25 16:55 UTC

CA Signed Public Key User Authentication does not honor ~/.ssh/authorized_keys

Greetings,

I am using OpenSSH Signed Public Key authentication for servers ssh login.
All of the servers are setup with below sshd_config options:

TrustedUserCAKeys /etc/ssh/ca.pub # CA Public Keys
RevokedKeys /etc/ssh/revoke.pub # User Public Keys

When i started working on it, for ssh authentication i had to have CA
Public Key in User  ~/.ssh/authorized_keys, like:

cert-authority ssh-rsa <user_key> <user_name>

But, now i am able to login without having CA Public Key in User '
~/.ssh/authorized_keys' file.

Even if i remove '' ~/.ssh/authorized_keys' file from for a user, i
am able
to login.

I wanted to know whether it is no longer require or it is a bug.

OpenSSH Version - openssh-6.1p1-8.30.amzn1.x86_64.

-V

Apparently Analagous Threads

Search for more reasonably related threads

openssh unix dev - Sep 2013 - CA Signed Public Key User Authentication does not honor ~/.ssh/authorized_keys

CA Signed Public Key User Authentication does not honor ~/.ssh/authorized_keys

Apparently Analagous Threads

Wisdom of the Ancients