This repository was archived by the owner on Jan 22, 2025. It is now read-only.
File tree Expand file tree Collapse file tree 1 file changed +9
-1
lines changed
Expand file tree Collapse file tree 1 file changed +9
-1
lines changed Original file line number Diff line number Diff line change @@ -51,9 +51,17 @@ TrustedUserCAKeys /etc/ssh/ca.pub
5151AuthorizedPrincipalsFile /etc/ssh/auth_principals/%u
5252```
5353
54+ Also, ensure that these permissions are correctly set:
55+
56+ ```
57+ chmod 0645 /etc/ssh/auth_principals/
58+ chmod 0644 /etc/ssh/auth_principals/*
59+ chmod 0644 /etc/ssh/ca.pub
60+ ```
61+
5462If that all looks good, review the getting started directions and ensure that you have followed the steps correctly.
5563Additionally, it is recommended to compare your sshd_config file with the stock one for your OS to look for any
56- non-standard config options. For example, setting ` UsePAM no ` will prevent the SSH CA from working.
64+ non-standard config options. For example, setting ` UsePAM no ` may prevent the SSH CA from working.
5765([ sshca.md] ( ./sshca.md ) also has some additional information on how SSH CAs work that may
5866be helpful). If you would like to follow an example, see the code in the ` tests/ ` directory which contains integration
5967tests (focus on Dockerfile-sshd for an example SSH server setup). If none of that works, the best strategy is to run
You can’t perform that action at this time.
0 commit comments