Help with CA Certificates for user authentication?
Ángel González
keisial at gmail.com
Sat Nov 5 05:25:55 EST 2011
Iain Morgan wrote:
> Using certificates does not bypass the need for a passphrase. For both
> certificate and public-key authentication, the candidate key or
> certificate is first presented to the server to see if it will be
> accepted. If the server is willing to accept the key or cert, you then
> move on to the stage where an actual signature is required.
>
> Note that just as with conventional public-key authentication, you can
> use ssh-agent to avoid having to enter the passphrase every time.
I guess it should be equally possible to use a passwordless file...
More information about the openssh-unix-dev
mailing list