SSSD Manual pages


Table of Contents

sss_ssh_knownhostsproxy — get OpenSSH host keys

Name

sss_ssh_knownhostsproxy — get OpenSSH host keys

Synopsis

sss_ssh_knownhostsproxy [ options ] HOST [PROXY_COMMAND]

DESCRIPTION

sss_ssh_knownhostsproxy acquires SSH host public keys for host HOST, stores them in a custom OpenSSH known_hosts file (see the SSH_KNOWN_HOSTS FILE FORMAT section of sshd(8) for more information) /var/lib/sss/pubconf/known_hosts and estabilishes connection to the host.

If PROXY_COMMAND is specified, it is used to create the connection to the host instead of opening a socket.

ssh(1) can be configured to use sss_ssh_knownhostsproxy for host key authentication by using the following directives for ssh(1) configuration:

ProxyCommand /usr/bin/sss_ssh_knownhostsproxy -p %p %h
GlobalKnownHostsFile /var/lib/sss/pubconf/known_hosts

OPTIONS

-p,--port PORT

Use port PORT to connect to the host. By default, port 22 is used.

-d,--domain DOMAIN

Search for host public keys in SSSD domain DOMAIN.

-?,--help

Display help message and exit.

SEE ALSO

sssd(8), sssd.conf(5), sssd-ldap(5), sssd-krb5(5), sssd-simple(5), sssd-ipa(5), sssd-ad(5), sssd-sudo(5), sss_cache(8), sss_debuglevel(8), sss_groupadd(8), sss_groupdel(8), sss_groupshow(8), sss_groupmod(8), sss_useradd(8), sss_userdel(8), sss_usermod(8), sss_obfuscate(8), sss_seed(8), sssd_krb5_locator_plugin(8), sss_ssh_authorizedkeys(8), sss_ssh_knowhostsproxy(8), pam_sss(8).