[Bug 2472] Add support to load additional certificates
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Fri Sep 13 08:13:29 AEST 2024
https://bugzilla.mindrot.org/show_bug.cgi?id=2472
Federico <eldorico at gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |eldorico at gmail.com
--- Comment #22 from Federico <eldorico at gmail.com> ---
(In reply to Peter from comment #20)
> Yes, thats what I do today. I distribute my certificate files so
> that are available locally on all machines that I need it. But thats
> not a very scalable solution.
>
> If you are using a combination of PKCS#11 tokens, agent forwarding
> and certificates this is to my knowledge to only way to go for the
> moment.
Hi Peter, could you elaborate a bit more please?
You say you create a signed certificate with the public key of your
smart card, then you keep this certificate on the laptop where you have
your smart card connected? Then you say that the agent is able to
forward both the private key of the smart card AND the certificate of
the laptop?
Is it using the patch? Or how is this feature available?
Thanks for your help
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list