Versions Compared

Old Version 2

changes.mady.by.user Jovin Langenegger

Saved on

compared with

New Version 3

changes.mady.by.user Jovin Langenegger

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

user based configuration paths

Code Block
languagebash
linenumberstrue
SSH_CERTIFICATES=$HOME/.ssh/netdef
SSH_CONFIG=$HOME/.ssh/config
SSH_KNOWNHOSTS=$HOME/.ssh/known_hosts

global configuration paths

Code Block
languagebashlinenumberstrue
SSH_CERTIFICATES=/etc/ssh/netdef
SSH_CONFIG=/etc/ssh/ssh_config
SSH_KNOWNHOSTS=/etc/ssh/ssh_known_hosts

...

Add the following lines to $SSH_CONFIG. $SSH_CERTIFICATES must be replaced with the correct path to the folder.


Code Block
languagebashlinenumberstrue
Host *.netdef.org
	CertificateFile `$SSH_CERTIFICATES`/helloworld-1234567890-1-cert.pub
	CertificateFile `$SSH_CERTIFICATES`/helloworld-1234567890-2-cert.pub 
	... 
	CertificateFile `$SSH_CERTIFICATES`/helloworld-1234567890-N-cert.pub

...

Add the following line to $SSH_KNOWNHOSTS where yubikeyX.pub must be replaced with the public key stored in yubikeyX.pub.

Code Block
languagebash
@cert-authority *.netdef.org

...

`yubikeyX.

...

pub`