Document administrators_authorized_keys #1581
Comments
|
Hi @fatso83 - Point taken about it not being in the official doco, but I can find references to this file location online, such as this post from May 2019: https://www.concurrency.com/blog/may-2019/key-based-authentication-for-openssh-on-windows |
|
Also - I'm a Linux/Mac Guy and ran into this problem (that you've detailed on the superuser post - i.e. interop with a Windows Server 2016 box). Just wanted to add that another approach to "spy on what Windows is doing" is to make use of procmon from sys internals. i.e. without needing to manually start sshd.exe with debug flags, I monitored during an ssh connection to see the following file access attempt (prior to the file administrators_authorised_keys being present)
|
|
It's documented here and it is an option in the SSH configuration file itself. |
|
But this is an English language installation only default which breaks in many other languages, where MS translated the text string used for 'administrators'. This is definitely a buggy default setting. !!! That fails in a multi language setup. !!! I just lost nearly half a day to understand that on my German windows machines the group match rule needs to be Like @jantari 's suggestion of: Change the current Match rule to something like this: This would be a much better and windows language install agnostic setting and should be the default, not a per language adapted string. |
I had tons of troubles trying to get public key authentication going, until I slapped on three
-dfor sshd that showed me that myauthorized_keyswas not even being used and that the real issue was withadministrators_authorized_keys. Google does not show any results for docs on this and I cannot find it mentioned in the wiki either.Can you please document this somewhere and link it from the public keys documentation? It took me 2 months to spot #1324, explaining some of the background.
The text was updated successfully, but these errors were encountered: