Table of Contents
sss_ssh_knownhostsproxy acquires SSH host
public keys for host HOST
, stores
them in a custom OpenSSH known_hosts file (see the
“SSH_KNOWN_HOSTS FILE FORMAT” section of
sshd(8) for more information)
/var/lib/sss/pubconf/known_hosts
and
estabilishes connection to the host.
If PROXY_COMMAND
is specified,
it is used to create the connection to the host instead of
opening a socket.
ssh(1) can be configured to use sss_ssh_knownhostsproxy for host key authentication by using the following directives for ssh(1) configuration:
ProxyCommand /usr/bin/sss_ssh_knownhostsproxy -p %p %h GlobalKnownHostsFile /var/lib/sss/pubconf/known_hosts
-p
,--port
PORT
Use port PORT
to connect to the host.
By default, port 22 is used.
-d
,--domain
DOMAIN
Search for host public keys in SSSD domain DOMAIN
.
-?
,--help
Display help message and exit.
sssd(8), sssd.conf(5), sssd-ldap(5), sssd-krb5(5), sssd-simple(5), sssd-ipa(5), sssd-ad(5), sssd-sudo(5), sss_cache(8), sss_debuglevel(8), sss_groupadd(8), sss_groupdel(8), sss_groupshow(8), sss_groupmod(8), sss_useradd(8), sss_userdel(8), sss_usermod(8), sss_obfuscate(8), sss_seed(8), sssd_krb5_locator_plugin(8), sss_ssh_authorizedkeys(8), sss_ssh_knowhostsproxy(8), pam_sss(8).