NAME

       sss_ssh_authorizedkeys - get OpenSSH authorized keys

SYNOPSIS

       sss_ssh_authorizedkeys [options] USER

DESCRIPTION

       sss_ssh_authorizedkeys acquires SSH public keys for user USER and outputs them in OpenSSH authorized_keys
       format (see the “AUTHORIZED_KEYS FILE FORMAT” section of sshd(8) for more information).

       sshd(8) can be configured to use sss_ssh_authorizedkeys for public key user authentication if it is
       compiled with support for either “AuthorizedKeysCommand” or “PubkeyAgent” sshd_config(5) options.

       If “AuthorizedKeysCommand” is supported, sshd(8) can be configured to use it by putting the following
       directives in sshd_config(5):

             AuthorizedKeysCommand /usr/bin/sss_ssh_authorizedkeys
             AuthorizedKeysCommandUser nobody

       If “PubkeyAgent” is supported, sshd(8) can be configured to use it by using the following directive for
       sshd(8) configuration:

           PubKeyAgent /usr/bin/sss_ssh_authorizedkeys %u

OPTIONS

       -d,--domain DOMAIN
           Search for user public keys in SSSD domain DOMAIN.

       -?,--help
           Display help message and exit.

EXIT STATUS

       In case of success, an exit value of 0 is returned. Otherwise, 1 is returned.

SEE ALSO

       sssd(8), sssd.conf(5), sssd-ldap(5), sssd-krb5(5), sssd-simple(5), sssd-ipa(5), sssd-ad(5), sssd-sudo(5),
       sss_cache(8), sss_debuglevel(8), sss_groupadd(8), sss_groupdel(8), sss_groupshow(8), sss_groupmod(8),
       sss_useradd(8), sss_userdel(8), sss_usermod(8), sss_obfuscate(8), sss_seed(8),
       sssd_krb5_locator_plugin(8), sss_ssh_authorizedkeys(8), sss_ssh_knownhostsproxy(8), sssd-ifp(5),
       pam_sss(8).  sss_rpcidmapd(5)

AUTHORS

       The SSSD upstream - http://fedorahosted.org/sssd

SSSD                                               05/28/2019                            SSS_SSH_AUTHORIZEDKE(1)