SSH certificate and serverside ForceCommand

Rory Campbell-Lange rory at
Wed Jun 24 23:52:58 AEST 2020

On 23/06/20, Alejandro Dabin (aledabin at wrote:
> As a side note, more information about the certificate (issue and
> expiration time) could be useful for auditing. It would be useful too if
> the server could log it (aside from CA, certificate serial, etc), but
> couldn't find any option either.

The identifier can be overloaded to have arbitrary information shown in
the audit log. I can't recall if you need to set LogLevel to something
above INFO.



More information about the openssh-unix-dev mailing list