We have a situation here where we have a lot of hosts and a lot of users with potential access to those hosts. Copying keys around to authorized_keys files is a major pain. Is there such a thing as a key server for ssh? Rich. -- rich at annexia.org | Is your school part of http://www.schoolmaster.net ? BiblioTech Ltd, Unit 2 Piper Centre, 50 Carnwath Road, London, SW6 3EG. +44 20 7384 6917 | Click here to play XRacer: http://xracer.annexia.org Copyright ? 2000 Richard Jones | GnuPG/PGP key from www.annexia.org
On Thu, 9 Mar 2000 rich at annexia.org wrote:> > We have a situation here where we have a lot of hosts and > a lot of users with potential access to those hosts. Copying > keys around to authorized_keys files is a major pain. Is there > such a thing as a key server for ssh?Yes. Neil Dunbar has a set of patches that allow OpenSSH to use a X.509 PKI with certs served from an LDAP server. His patches are available from ftp://ftp-uk.hpl.hp.com/pub/nd/ -d -- | "Bombay is 250ms from New York in the new world order" - Alan Cox | Damien Miller - http://www.mindrot.org/ | Email: djm at mindrot.org (home) -or- djm at ibs.com.au (work)