Description of problem: In RHEL7 a new -n option had been added: -n name,... User/host principal names to include in certificate In previous RHELs we had a downstream patch that made it possible to use NSS db for storing the public keys: -n Extract the public key from smartcard. Also the whole NSS patch is missing Version-Release number of selected component (if applicable): openssh-6.1p1-4.el7 How reproducible: 100% Steps to Reproduce: 1. man openssh 2. try to use ssh-keygen with -n 3. try to use UseNSS with sshd Actual results: Conflict and no NSS patch applied Expected results: Well, I do not know? What does the developer think? Additional info:
There is no NSS support in the openssh-6.1p1-4.el7, It's not needed anymore since there is a direct smartcards support using PKCS#11 library in openssh, ssh-keygen -D, ssh -I and others
Ok thanks, I will try to update the test to cover the direct support.