Matching username in ssh_config
Anton Lundin
glance at acc.umu.se
Wed Jun 19 17:33:15 EST 2013
On 18 June, 2013 - Iain Morgan wrote:
> On Tue, Jun 18, 2013 at 05:33:16 -0500, Anton Lundin wrote:
> > Hi all openssh devs out there.
> >
> > I have quite a few Host-stanzas in my .ssh/config to keep track of all the
> > different settings and credentials needed to access all different hosts I
> > connect to.
> >
> > Now I have ran in to a problem where I need to switch settings based on what
> > user I'm trying to login to a host as. A simple case is:
> >
> > ssh -i rootkey root at host123
> > vs.
> > ssh -i userkey username at host123
> >
> > Up until now I have just used a stanza like
> >
> > Host host123
> > User username
> > IdentityFile userkey
> >
> > But it would be awesome of it was possible to add before that, eg fist
> > match as all other blocks, a stanza looking like:
> >
> > Host root at host123
> > IdentityFile rootkey
> >
> >
> > So when I type:
> > "ssh host123" it resolves to equivalent of "ssh -i userkey username at host123"
> > And when i type:
> > "ssh root at host123" it would resolve to "ssh -i rootkey root at host123"
> >
> >
> > Does this sound reasonable to the rest of you?
> >
> > //Anton
> >
> > Ps.
> > Please keep me on Cc, I'm not subscribed to the list.
> >
>
> What about using %r when you specify IdentityFile?
This is a good solution, but it requires that you layout your
IdentityFile's in some sane fashion and not just as you create them and
be done with it.
I also use Simon Wilkinson's gssapi-patches and now when krb5-libraries
start to have support for multi-principal credential-caches the
GSSAPIClientIdentity option is just awesome.
Then i would be nifty to do something like:
Host root at host123
GSSAPIClientIdentity username/root at REALM
Host host123
User username
GSSAPIClientIdentity username at REALM
//Anton
--
Anton Lundin +46702-161604
More information about the openssh-unix-dev
mailing list