version 1.145, 2012/10/04 13:21:50 |
version 1.146, 2012/10/30 21:29:55 |
|
|
in |
in |
.Xr ssh_config 5 |
.Xr ssh_config 5 |
for more information on patterns. |
for more information on patterns. |
|
.It Cm AuthorizedKeysCommand |
|
Specifies a program to be used for lookup of the user's public keys. |
|
The program will be invoked with a single argument of the username |
|
being authenticated, and should produce on standard output zero or |
|
more lines of authorized_keys output (see AUTHORIZED_KEYS in |
|
.Xr sshd 8 ) |
|
If a key supplied by AuthorizedKeysCommand does not successfully authenticate |
|
and authorize the user then public key authentication continues using the usual |
|
.Cm AuthorizedKeysFile |
|
files. |
|
By default, no AuthorizedKeysCommand is run. |
|
.It Cm AuthorizedKeysCommandUser |
|
Specifies the user under whose account the AuthorizedKeysCommand is run. |
|
The default is the user being authenticated. |
|
It is recommended to use a dedicated user that has no other role on the host |
|
than running authorized keys commands. |
.It Cm AuthorizedKeysFile |
.It Cm AuthorizedKeysFile |
Specifies the file that contains the public keys that can be used |
Specifies the file that contains the public keys that can be used |
for user authentication. |
for user authentication. |
|
|
.Cm AllowTcpForwarding , |
.Cm AllowTcpForwarding , |
.Cm AllowUsers , |
.Cm AllowUsers , |
.Cm AuthorizedKeysFile , |
.Cm AuthorizedKeysFile , |
|
.Cm AuthorizedKeysCommand , |
|
.Cm AuthorizedKeysCommandUser , |
.Cm AuthorizedPrincipalsFile , |
.Cm AuthorizedPrincipalsFile , |
.Cm Banner , |
.Cm Banner , |
.Cm ChrootDirectory , |
.Cm ChrootDirectory , |