From 7d182cac789d16c0886ecd96c82172ad78243d33 Mon Sep 17 00:00:00 2001
From: Manoj Ampalam <manojampalam@live.com>
Date: Mon, 15 May 2017 00:44:53 -0700
Subject: [PATCH] Updated Install Win32 OpenSSH (markdown)

---
 Install-Win32-OpenSSH.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/Install-Win32-OpenSSH.md b/Install-Win32-OpenSSH.md
index 459687b..bb8d190 100644
--- a/Install-Win32-OpenSSH.md
+++ b/Install-Win32-OpenSSH.md
@@ -11,6 +11,11 @@
      * `powershell -executionpolicy bypass -file install-sshd.ps1`
 * Setup SSH host keys 
      * `.\ssh-keygen.exe -A`.
+     * Add read access for "NT Service/sshd" on all host public keys
+        * `icacls ssh_host_dsa_key.pub /grant "NT SERVICE\sshd":(R)`
+        * `icacls ssh_host_rsa_key.pub /grant "NT SERVICE\sshd":(R)`
+        * `icacls ssh_host_ecdsa_key.pub /grant "NT SERVICE\sshd":(R)`
+        * `icacls ssh_host_ed25519_key.pub /grant "NT SERVICE\sshd":(R)`
      * See [here](https://github.com/PowerShell/Win32-OpenSSH/wiki/Security-protection-of-various-files-in-Win32-OpenSSH) for instructions to set the right permissions on host keys. 
 * Secure SSH host keys (optional)
      * `Start-Service ssh-agent`