Use ssh key to acquire TGT?

[Adam Megacz]

Thanks for taking the time to reply, Russ.

Russ Allbery <rra at stanford.edu> writes:
> PKINIT already exists and is already standardized,

Hrm, last I checked there was no RFC, just an internet-draft.

> so using X.509 certificates is much easier than using ssh private
> keys.

Perhaps for administrators it might be, but I would guess that there
are at least 10x as many active ssh keys on the internet as X.509
certificates even in spite of the latter having been aroudn longer.

But it shouldn't be hard to define a "default wrapping" for the ssh
key material as an X.509 certificate.

> (such as how to communicate the TGT back to the client securely).

The client would have to keep the equivalent of a "host key" for the
KDC.  IMHO the usual "asymptotically secure" approach (no security on
the first connection, but complain loudly if the key changes on any
subsequent connection) would probably be good enough.

  - a