Red Hat Bugzilla – Bug 985809
sss_ssh_authorizedkeys documentation incorrect
Last modified: 2015-07-23 06:38:44 EDT
Document URL: https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/openssh-sssd.html
Section Number and Name: 18.104.22.168. Configuring OpenSSH to Use SSSD for User Keys
Describe the issue:
The document incorrectly states that sss_ssh_authorizedkeys manages the file ~/.ssh/sss_authorized_keys and that it should be configured in ssh_config or ~/.ssh/config. There are also some missing configuration options.
Suggestions for improvement:
sss_ssh_authorizedkeys does not manage any file, it prints authorized keys on its standard output. See sshd_config man page, AuthorizedKeysCommand option for details.
This feature is configured in /etc/ssh/sshd_config. The sshd service must be restarted in order for any changes to take effect.
The AuthorizedKeysCommand option should be accompanied by AuthorizedKeysCommandRunAs option:
Remove the PubKeyAgent remark, this legacy option is not available in RHEL.