OpenSSH - Central repository for "Match" rules
Damien Miller
djm at mindrot.org
Thu Jun 13 12:28:44 AEST 2024
On Tue, 11 Jun 2024, SCOTT FIELDS wrote:
> I'm not seeing if this has been asked in the past.
>
> Has there been discussion about implementing facilities with OpenSSH
> for having it pull "Match" rules from a central repository, namely
> LDAP or a RESTAPI service?
You could probably hack something together using the exising ssh_config
"Match exec" and "Include" directives here. E.g.
Match !final exec "~/bin/download-config-ephemeral"
Match any
Include ~/.ssh/config-ephemeral
More information about the openssh-unix-dev
mailing list