Hello,
I would like to deploy FIDO for SSH. I wanted to leverage Windows Hello on Windows clients as FIDO backend (so that I don’t have to buy hw tokens for everyone and for convenience), but evidently my TPM flavor doesn’t support ECDSA, only RSA.
Would it be possible to extend OpenSSH support to include “rsa-sk” keys?
Not sure what the process is, but could development of it be sponsored?
Thank you
Jan
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
I would like to deploy FIDO for SSH. I wanted to leverage Windows Hello on Windows clients as FIDO backend (so that I don’t have to buy hw tokens for everyone and for convenience), but evidently my TPM flavor doesn’t support ECDSA, only RSA.
Would it be possible to extend OpenSSH support to include “rsa-sk” keys?
Not sure what the process is, but could development of it be sponsored?
Thank you
Jan
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev