...
- -g
- This takes a github user name as an argument and generates a certificate for each key stored in github.
- -f
- Instead of the github user name, one can provide a file that contains all the keys.
- Nevertheless the flag
'-g'is needed as the certificate holder's name.
- -V
- Add the validity period of a certificate in number of days.
- Per default a certificate is valid for 7 seven days.Having 0 as a validity period means that the certificate is valid forever.
- more information can be found here: https://man.openbsd.org/ssh-keygen#V
- -n
- This flag restricts the certificate to a list of principals that the client is allowed to log in.
...
- -I
- This takes the HOST_ID of the server.
- -f
- The file that contains all the keys.
- -V
- Add the validity period of a certificate in number of days.
- Per default a certificate is valid for 7 days.Having 0 as a validity period means that the certificate is valid forever.one year.
- more information can be found here: https://man.openbsd.org/ssh-keygen#V
- -n
- This flag restricts the certificate to a list of pricipals that the host is known by.
...