From 3ad1638f298dbed1e9b9c38c4198f8f178844aad Mon Sep 17 00:00:00 2001 From: Manoj Ampalam Date: Fri, 2 Feb 2018 08:58:05 -0800 Subject: [PATCH] Updated Certificate Authentication (markdown) --- Certificate-Authentication.md | 1 + 1 file changed, 1 insertion(+) diff --git a/Certificate-Authentication.md b/Certificate-Authentication.md index fc1ddae..6c8bce3 100644 --- a/Certificate-Authentication.md +++ b/Certificate-Authentication.md @@ -4,6 +4,7 @@ - Register above key as trusted CA for sshd. Add following entry in sshd_config - `TrustedUserCAKeys ca_userkeys.pub` - Path above is relative to sshd binaries directory. Absolute path is recommended to avoid confusion +- Check out [#1055](https://github.com/PowerShell/Win32-OpenSSH/issues/1055) for considerations while working with domain accounts. At this point, server can accept any user certificates signed using ca_userkeys and there is no need to explicitly map user keys in authorized_keys