SSH CA Setup in AWS - Permission Denied (Public Key) Issue #1397
Description
I implemented an SSH Certificate Authority (CA) and configured a target host in AWS using the steps outlined in this Smallstep blog post.
Everything went smoothly:
- The CA server is up and running.
- The target host is correctly configured to verify user certificates as mentioned in the blog.
- I bootstrapped the CA on my local system.
- I obtained a user certificate using the SSO flow.
- The certificate was successfully added to the local SSH agent.
- I configured SSH using step ssh config.
However, when attempting to SSH into the target host, I encounter the following error:
Permission denied (publickey).
All setup steps were followed exactly as described in the documentation. If you wish to reproduce the issue, simply follow the guide—I have not made any modifications beyond what is documented.
Any insights into what might be causing this issue would be greatly appreciated.
Steps to Reproduce:
- Follow the blog post to set up the CA and target host.
- Bootstrap the CA on a local machine.
- Obtain a user certificate via SSO.
- Ensure the certificate is added to the SSH agent.
- Attempt to SSH into the target host.
Would appreciate any guidance on resolving this.
Thanks!