/etc/privacyidea/authorizedkeyscommand
25 views
Skip to first unread message
Nicke
Nov 6, 2015, 7:05:28 AM11/6/15
to privacyidea
Am trying to get SSH keys authentication to work.
It says on http://privacyidea.readthedocs.org/en/v2.7/machines/index.html#application-ssh
What is admin and password here?
On a side note, it says you need to add
It says on http://privacyidea.readthedocs.org/en/v2.7/machines/index.html#application-ssh
The command expects a configuration file /etc/privacyidea/authorizedkeyscommand which looks like this:
[Default] url=https://localhost admin=admin password=test nosslcheck=False
What is admin and password here?
On a side note, it says you need to add
AuthorizedKeysCommand but to also need to add AuthorizedKeysCommandUser otherwise sshd will not start.
Cornelius Kölbel
Nov 6, 2015, 7:40:36 AM11/6/15
to priva...@googlegroups.com
Hi Nicke,
this is an administrator of privacyIDEA.
In such a case you should define an administrator with restricted
rights, who is only allowed to do "fetch_authentication_items" in the
scope "admin".
Kind regards
Cornelius
> --
> You received this message because you are subscribed to the Google
> Groups "privacyidea" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to privacyidea...@googlegroups.com.
> To post to this group, send email to priva...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/privacyidea/3cd0008d-85f7-420c-845c-a7397f463c5c%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
--
Cornelius Kölbel
corneliu...@netknights.it
+49 151 2960 1417
NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798
Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel
this is an administrator of privacyIDEA.
In such a case you should define an administrator with restricted
rights, who is only allowed to do "fetch_authentication_items" in the
scope "admin".
Kind regards
Cornelius
> You received this message because you are subscribed to the Google
> Groups "privacyidea" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to privacyidea...@googlegroups.com.
> To post to this group, send email to priva...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/privacyidea/3cd0008d-85f7-420c-845c-a7397f463c5c%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
--
Cornelius Kölbel
corneliu...@netknights.it
+49 151 2960 1417
NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798
Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel
Reply all
Reply to author
Forward
0 new messages