version 1.304, 2019/09/13 04:52:34 |
version 1.305, 2019/11/07 08:38:38 |
|
|
via |
via |
.Xr ssh-agent 1 , |
.Xr ssh-agent 1 , |
or via a |
or via a |
.Cm PKCS11Provider . |
.Cm PKCS11Provider |
|
or |
|
.Cm SecurityKeyProvider . |
.Pp |
.Pp |
Arguments to |
Arguments to |
.Cm CertificateFile |
.Cm CertificateFile |
|
|
ecdsa-sha2-nistp384-cert-v01@openssh.com, |
ecdsa-sha2-nistp384-cert-v01@openssh.com, |
ecdsa-sha2-nistp521-cert-v01@openssh.com, |
ecdsa-sha2-nistp521-cert-v01@openssh.com, |
ssh-ed25519-cert-v01@openssh.com, |
ssh-ed25519-cert-v01@openssh.com, |
rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com, |
rsa-sha2-512-cert-v01@openssh.com, |
|
rsa-sha2-256-cert-v01@openssh.com, |
ssh-rsa-cert-v01@openssh.com, |
ssh-rsa-cert-v01@openssh.com, |
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
|
|
ecdsa-sha2-nistp384-cert-v01@openssh.com, |
ecdsa-sha2-nistp384-cert-v01@openssh.com, |
ecdsa-sha2-nistp521-cert-v01@openssh.com, |
ecdsa-sha2-nistp521-cert-v01@openssh.com, |
ssh-ed25519-cert-v01@openssh.com, |
ssh-ed25519-cert-v01@openssh.com, |
rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com, |
rsa-sha2-512-cert-v01@openssh.com, |
|
rsa-sha2-256-cert-v01@openssh.com, |
ssh-rsa-cert-v01@openssh.com, |
ssh-rsa-cert-v01@openssh.com, |
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
|
|
.Xr ssh-agent 1 |
.Xr ssh-agent 1 |
or a |
or a |
.Cm PKCS11Provider |
.Cm PKCS11Provider |
|
or |
|
.Cm SecurityKeyProvider |
offers more identities. |
offers more identities. |
The argument to this keyword must be |
The argument to this keyword must be |
.Cm yes |
.Cm yes |
|
|
.Sx TOKENS |
.Sx TOKENS |
section. |
section. |
.It Cm IdentityFile |
.It Cm IdentityFile |
Specifies a file from which the user's DSA, ECDSA, Ed25519 or RSA authentication |
Specifies a file from which the user's DSA, ECDSA, security key-hosted ECDSA, |
identity is read. |
Ed25519 or RSA authentication identity is read. |
The default is |
The default is |
.Pa ~/.ssh/id_dsa , |
.Pa ~/.ssh/id_dsa , |
.Pa ~/.ssh/id_ecdsa , |
.Pa ~/.ssh/id_ecdsa , |
|
.Pa ~/.ssh/id_ecdsa_sk , |
.Pa ~/.ssh/id_ed25519 |
.Pa ~/.ssh/id_ed25519 |
and |
and |
.Pa ~/.ssh/id_rsa . |
.Pa ~/.ssh/id_rsa . |
|
|
default set. |
default set. |
The default for this option is: |
The default for this option is: |
.Bd -literal -offset 3n |
.Bd -literal -offset 3n |
|
sk-ecdsa-sha2-nistp256-cert-v01@openssh.com, |
ecdsa-sha2-nistp256-cert-v01@openssh.com, |
ecdsa-sha2-nistp256-cert-v01@openssh.com, |
ecdsa-sha2-nistp384-cert-v01@openssh.com, |
ecdsa-sha2-nistp384-cert-v01@openssh.com, |
ecdsa-sha2-nistp521-cert-v01@openssh.com, |
ecdsa-sha2-nistp521-cert-v01@openssh.com, |
ssh-ed25519-cert-v01@openssh.com, |
ssh-ed25519-cert-v01@openssh.com, |
rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com, |
rsa-sha2-512-cert-v01@openssh.com, |
|
rsa-sha2-256-cert-v01@openssh.com, |
ssh-rsa-cert-v01@openssh.com, |
ssh-rsa-cert-v01@openssh.com, |
|
sk-ecdsa-sha2-nistp256@openssh.com, |
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, |
ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa |
.Ed |
.Ed |
|
|
.Xr ssh-keygen 1 . |
.Xr ssh-keygen 1 . |
For more information on KRLs, see the KEY REVOCATION LISTS section in |
For more information on KRLs, see the KEY REVOCATION LISTS section in |
.Xr ssh-keygen 1 . |
.Xr ssh-keygen 1 . |
|
.It Cm SecurityKeyProvider |
|
Specifies a path to a security key provider library that will be used when |
|
loading any security key-hosted keys, overriding the default of using the |
|
.Ev SSH_SK_PROVIDER |
|
environment variable to specify a provider. |
.It Cm SendEnv |
.It Cm SendEnv |
Specifies what variables from the local |
Specifies what variables from the local |
.Xr environ 7 |
.Xr environ 7 |