[ssh_x509] X.509v3 SSH Server and Client configuration README page

ssh_x509 at roumenpetrov.info ssh_x509 at roumenpetrov.info
Mon Aug 26 10:12:19 EEST 2019


Hi Roumen,

I want to use x509v3-rsa2048-sha256 algorithm for X.509v3 certificate based
SSH authentication.
>From the README guide(
https://roumenpetrov.info/openssh/x509-5.3/README.x509v3 ) , I couldn't
figure out whether I should provide 'x509v3-rsa2048-sha256' algorithm in
X509KeyAlgorithm in sshd_config or not.

X509KeyAlgorithm x509v3-sign-rsa,rsa-md5
X509KeyAlgorithm x509v3-sign-rsa,rsa-sha1

X509KeyAlgorithm x509v3-sign-rsa-sha1,rsa-sha1,ssh-rsa

I assume above sshd_config uses x509v3-ssh-rsa algorithm for
certificate based SSH authentication.

Kindly provide me with configuration steps/README
guide/X509KeyAlgorithm value in sshd_config to configure and use
x509v3-rsa2048-sha256 algorithm  for certificate based SSH
authentication.

 Thanks & Regards

Mohit Gupta

On Fri, May 17, 2019 at 12:57 AM <ssh_x509 at roumenpetrov.info> wrote:

> Hi Mohit,
>
> Thanks for report.
>
> ssh_x509 at roumenpetrov.info wrote:
> > Hi Roumen,
> >
> > Last year, I picked PKISSH10.2 and I was using one README page with the
> URL
> > given below.
> > http://roumenpetrov.info/openssh/x509-5.3/README.x509v3
>
> It is available with https protocol, i.e.
> https://roumenpetrov.info/openssh/x509-5.3/README.x509v3
>
> >
> > I am not able to access this readme guide anymore. The new URL's given is
> > also not working.
> > Can you provide me with the Readme guide for SSH server and client
> > configurations.
>
> It will look into http to https rewrite rule.
>
>
>
> > Thanks & Regards
> > Mohit Gupta
>
>
> Thanks,
> Roumen Petrov
>
>
>
> _______________________________________________
> ssh_x509 mailing list
> ssh_x509 at roumenpetrov.info
> http://roumenpetrov.info/mailman/listinfo/ssh_x509_roumenpetrov.info
>


More information about the ssh_x509 mailing list