sss_ssh_authorizedkeys.1.xml revision 5f6ed9ee56da19b87270ab5428a5c5fce5aab21e
127N/A<?xml version="1.0" encoding="UTF-8"?>
127N/A<!DOCTYPE reference PUBLIC "-//OASIS//DTD DocBook V4.4//EN"
127N/A"http://www.oasis-open.org/docbook/xml/4.4/docbookx.dtd">
127N/A<reference>
127N/A<title>SSSD Manual pages</title>
127N/A<refentry>
127N/A <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="include/upstream.xml" />
127N/A
127N/A <refmeta>
127N/A <refentrytitle>sss_ssh_authorizedkeys</refentrytitle>
127N/A <manvolnum>1</manvolnum>
127N/A </refmeta>
127N/A
127N/A <refnamediv id='name'>
127N/A <refname>sss_ssh_authorizedkeys</refname>
127N/A <refpurpose>get OpenSSH authorized keys</refpurpose>
127N/A </refnamediv>
127N/A
127N/A <refsynopsisdiv id='synopsis'>
127N/A <cmdsynopsis>
127N/A <command>sss_ssh_authorizedkeys</command>
127N/A <arg choice='opt'>
3996N/A <replaceable>options</replaceable>
127N/A </arg>
127N/A <arg choice='plain'><replaceable>USER</replaceable></arg>
127N/A </cmdsynopsis>
127N/A </refsynopsisdiv>
127N/A
729N/A <refsect1 id='description'>
618N/A <title>DESCRIPTION</title>
127N/A <para>
127N/A <command>sss_ssh_authorizedkeys</command> acquires SSH
844N/A public keys for user <replaceable>USER</replaceable> and
844N/A outputs them in OpenSSH authorized_keys format (see the
127N/A <quote>AUTHORIZED_KEYS FILE FORMAT</quote> section of
1273N/A <citerefentry><refentrytitle>sshd</refentrytitle>
127N/A <manvolnum>8</manvolnum></citerefentry> for more
3661N/A information).
3661N/A </para>
729N/A <para>
729N/A <citerefentry><refentrytitle>sshd</refentrytitle>
729N/A <manvolnum>8</manvolnum></citerefentry> can be configured
729N/A to use <command>sss_ssh_authorizedkeys</command> for public
729N/A key user authentication if it is compiled with support for
729N/A <quote>AuthorizedKeysCommand</quote> option. Please refer
844N/A to the <citerefentry>
844N/A <refentrytitle>sshd_config</refentrytitle>
729N/A <manvolnum>5</manvolnum></citerefentry> man page for more
729N/A details about this option.
729N/A </para>
3996N/A <para>
3996N/A If <quote>AuthorizedKeysCommand</quote> is supported,
3996N/A <citerefentry><refentrytitle>sshd</refentrytitle>
127N/A <manvolnum>8</manvolnum></citerefentry> can be configured to
127N/A use it by putting the following directives in <citerefentry>
127N/A <refentrytitle>sshd_config</refentrytitle>
127N/A <manvolnum>5</manvolnum></citerefentry>:
127N/A<programlisting>
127N/A AuthorizedKeysCommand /usr/bin/sss_ssh_authorizedkeys
729N/A AuthorizedKeysCommandUser nobody
729N/A</programlisting>
751N/A </para>
751N/A </refsect1>
751N/A
751N/A <refsect1 id='options'>
751N/A <title>OPTIONS</title>
751N/A <variablelist remap='IP'>
751N/A <varlistentry>
751N/A <term>
751N/A <option>-d</option>,<option>--domain</option>
751N/A <replaceable>DOMAIN</replaceable>
729N/A </term>
729N/A <listitem>
729N/A <para>
729N/A Search for user public keys in SSSD domain <replaceable>DOMAIN</replaceable>.
729N/A </para>
729N/A </listitem>
729N/A </varlistentry>
729N/A <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="include/param_help.xml" />
729N/A </variablelist>
729N/A </refsect1>
729N/A
729N/A <refsect1 id='exit_status'>
729N/A <title>EXIT STATUS</title>
729N/A <para>
729N/A In case of success, an exit value of 0 is returned. Otherwise,
729N/A 1 is returned.
729N/A </para>
729N/A </refsect1>
729N/A
729N/A <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="include/seealso.xml" />
729N/A
729N/A</refentry>
729N/A</reference>
729N/A