Cheat Sheet logoCheat Sheet Today
OpenSSH Server Admin Cheat Sheet/Trust a user CA in sshd_config

Allow user certificates signed by a trusted CA.

Back to sheetBrowse commands
Sign in to save
Section: Server Keys and Certificates

Trust a user CA in sshd_config

sshdconfig
sshdconfig
TrustedUserCAKeys /etc/ssh/trusted_user_ca_keys.pub
Explanation

Allow user certificates signed by a trusted CA.

View in sheet →

Learn the surrounding workflow

Compare similar commands or jump into common fixes when this command is part of a bigger troubleshooting path.

Compare commandsView fixes

Related commands

Same sheet · prioritizing Server Keys and Certificates
Generate a host Ed25519 key
Create an Ed25519 host key for sshd.
OpenIn sheetbashsame section
Generate a user CA key
Create a key pair for signing user certificates.
OpenIn sheetbashsame section
Sign a user public key
Create a short-lived user certificate from a CA.
OpenIn sheetbashsame section
Trust a host CA in known_hosts
Trust host certificates signed by a CA.
OpenIn sheettextsame section
Test sshd configuration
Validate sshd_config syntax before restart.
OpenIn sheetbash2 tag match
Disable password authentication
Require key-based authentication on the server.
OpenIn sheetsshdconfig2 tag match