Add Support of fido based algorithms in sshd ( OpenSSH Server)

### Discussed in https://github.com/PowerShell/Win32-OpenSSH/discussions/2236

<div type='discussions-op-text'>

<sup>Originally posted by **forrest96** June  2, 2024</sup>
Could you add support for FIDO-backed public key authentication in the OpenSSH Server (sshd)? 
This includes the following algorithms:

- sk-ssh-ed25519-cert-v01@openssh.com
- sk-ecdsa-sha2-nistp256-cert-v01@openssh.com
- sk-ssh-ed25519@openssh.com
- sk-ecdsa-sha2-nistp256@openssh.com

The implementation should be straightforward.

Please add the following configurations to sshd_config to indicate the supported implementations:

- PubkeyAuthOptions

- PubkeyAcceptedAlgorithms   
ssh-ed25519-cert-v01@openssh.com,
ecdsa-sha2-nistp256-cert-v01@openssh.com,
ecdsa-sha2-nistp384-cert-v01@openssh.com,
ecdsa-sha2-nistp521-cert-v01@openssh.com,
sk-ssh-ed25519-cert-v01@openssh.com,
sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,
rsa-sha2-512-cert-v01@openssh.com,
rsa-sha2-256-cert-v01@openssh.com,
ssh-ed25519,
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
sk-ssh-ed25519@openssh.com,
sk-ecdsa-sha2-nistp256@openssh.com,
rsa-sha2-512,rsa-sha2-256</div>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add Support of fido based algorithms in sshd ( OpenSSH Server) #2237

Discussed in #2236

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add Support of fido based algorithms in sshd ( OpenSSH Server) #2237

Description

Discussed in #2236

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions