src/usr.bin/ssh/sshd_config.5 - diff

Return to sshd_config.5 CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/sshd_config.5 between version 1.201 and 1.202

-version 1.201, 2015/05/21 06:38:35
+version 1.202, 2015/05/21 06:43:31
 Line 287
 Line 287
 Line 287
  Multiple files may be listed, separated by whitespace.
  The default is
  .Dq .ssh/authorized_keys .ssh/authorized_keys2 .
+ .It Cm AuthorizedPrincipalsCommand
+ Specifies a program to be used to generate the list of allowed
+ certificate principals as per
+ .Cm AuthorizedPrincipalsFile .
+ The program must be owned by root, not writable by group or others and
+ specified by an absolute path.
+ .Pp
+ Arguments to
+ .Cm AuthorizedPrincipalsCommand
+ may be provided using the following tokens, which will be expanded
+ at runtime: %% is replaced by a literal '%', %u is replaced by the
+ username being authenticated and %h is replaced by the home directory
+ of the user being authenticated.
+ .Pp
+ The program should produce on standard output zero or
+ more lines of
+ .Cm AuthorizedPrincipalsFile
+ output.
+ If either
+ .Cm AuthorizedPrincipalsCommand
+ or
+ .Cm AuthorizedPrincipalsFile
+ is specified, then certificates offered by the client for authentication
+ must contain a principal that is listed.
+ By default, no AuthorizedPrincipalsCommand is run.
+ .It Cm AuthorizedPrincipalsCommandUser
+ Specifies the user under whose account the AuthorizedPrincipalsCommand is run.
+ It is recommended to use a dedicated user that has no other role on the host
+ than running authorized principals commands.
+ If
+ .Cm AuthorizedPrincipalsCommand
+ is specified but
+ .Cm AuthorizedPrincipalsCommandUser
+ is not, then
+ .Xr sshd 8
+ will refuse to start.
  .It Cm AuthorizedPrincipalsFile
  Specifies a file that lists principal names that are accepted for
  certificate authentication.