tyler.durden
/
Win32-OpenSSH
mirror of https://github.com/PowerShell/Win32-OpenSSH.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Added step to grant "nt service\sshd" read access to private keys

Yanbing 2017-05-03 19:06:44 -07:00
parent 388e79ae96
commit 8ee2c6f2c2
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
Install-Win32-OpenSSH.md

@ -11,6 +11,15 @@
* `powershell -executionpolicy bypass -file install-sshd.ps1`
* Setup SSH host keys (this will generate all the 'host' keys that sshd expects when its starts)
* `.\ssh-keygen.exe -A`
* Grant "NT service\sshd" read access the host private key files:
```
Get-ChildItem -Path 'C:\Program Files\OpenSSH\ssh_host_*_key' | % {
$acl = get-acl $_.FullName
$ar = New-Object System.Security.AccessControl.FileSystemAccessRule("NT Service\sshd", "Read", "Allow")
$acl.SetAccessRule($ar)
Set-Acl $_.FullName $acl
}
```
* Secure SSH host keys (optional)
* `Start-Service ssh-agent`
* download psexec from [here](https://technet.microsoft.com/en-us/sysinternals/pstools)