Pantek Library
Hosting Provided By
CybrHost
High Speed Hosting
Mailing Lists: securityfocus.com > secureshell > 03 > 020428.html (Request Expert securityfocus.com Support)

RE: make x.509 certificate authentication work with ssh

From: STEWARD, Curtis (Jamestown) <Curtis.Steward(at)goodrich.com>
Date: Fri Feb 21 2003 - 12:59:51 EST


Qing,

I've inquired on the list before and couldn't come up with any plans to incorporate any particular X.509 functionality into the code for OpenSSH.

However, I'm aware of two patches for OpenSSH for X.509:

http://satva.skalasoft.com/~rumen/openssh/ http://www.ncsa.uiuc.edu/Divisions/ACES/GSI/openssh/

I've had most luck with NCSA's GSI in standalone (without complete grid security). They just came out with 1.8 and it seems fairly mature. If you need additional doc let me know.

cs
-----Original Message-----
From: qing.lu@kodak.com [mailto:qing.lu@kodak.com] Sent: Thursday, February 20, 2003 5:18 PM To: secureshell@securityfocus.com
Subject: make x.509 certificate authentication work with ssh

Hello all,

I have ssh server on UNIX ---openssh 3.5p1 and ssh client on window or unix with Secure CRT (commertial version) or F-Secure (commertial version) client or openssh client. I can make public key authentication with user key work but not public key authentication with x.509 certificate. I have already got my CA, server and client certificate. I like to know what do I need to do on both server and client side in order to make it work. What options I need to set in configuration file? I found the help pages in openssh and SecureCRT, F-Secure are really laking of information in this regard.

Do you need help?X

I apprecite any help from the group.

Thanks,
Qing Received on Fri Feb 21 13:12:41 2003

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:54 EDT

Contact Us  Legal Notices  Order Services Online 
Pantek Home  Privacy Policy  IT news  Site Map  Pantek Library