https://bugzilla.mindrot.org/show_bug.cgi?id=2487
Bug ID: 2487
Summary: AuthorizedPrincipalsCommand should probably document
whether it only applies to TrustedUserCAKeys CAs
Product: Portable OpenSSH
Version: -current
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: Documentation
Assignee: [email protected]
Reporter: [email protected]
Hey.
AuthorizedPrincipalsCommand is analogous to AuthorizedPrincipalsFile,
so I guess it also applies only to CAs that are listed in
TrustedUserCAKeys.
Therefore I suggest that the same paragraph from the
AuthorizedPrincipalsFile description is added there as well, i.e.:
Note that AuthorizedPrincipalsCommand is only used when authentication
proceeds using a CA listed in TrustedUserCAKeys and is not consulted
for certification authorities trusted via ~/.ssh/authorized_keys,
though the principals= key option offers a similar facility (see
sshd(8) for details).
Cheers,
Chris.
--
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
[email protected]
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
