-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I know of at least one large customer storing public key information in
eDirectory. Basically it's very similar to the certificate information
already stored for KMOs in the tree. How you use them, though, is
something I'd be interested in hearing more about. If you could somehow
get SSH to use the data from eDirectory, or have something on boxes pull
the allowed users' keys from eDirectory into a file, that'd be neat.

I suppose you could do private key stuff there too, or hosts' public
keys for verification outside of the initial SSH connection, but I'd
probably avoid private key things personally.

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.18 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBAgAGBQJP8ej5AAoJEF+XTK08PnB5KBMQAM2SF4aKGx BN1vV/GSuRWBf9
Bdv0ZJ0YhNUDmFy19rgLnT2UsKtkQKjhq3Qfoksy401mGUPo+8 bkmV2mD/7RneLo
LA51c9wBDibpihwytyxbCoTicDQay3DnHucLk6lZe0qK6TBLOl bM18wIos1rKVDr
WtWSm/cK2tj3m2zcmV8rr16shC5J4IhA9jXswexoM8lQFUvSrwB8ofqO a8AWvAVu
/sIH59zq6FlHo/iBUrojxaeQaPTl8MZIXGbaD5twZXrzsUmAHiK0ZRVTp6Ye3TtI
Iac84V7THWI8/qfpatPnnTxqjqT6Se+5Bi1rcLWab0WRtlC6S/qyHh8M92gsxVu+
kXx/O51ePbhOKF09L8q0cQS4+myBGzFdLNICRPik96TjE9wClXjTKv nLBN4taU+e
s5fytckaacbOkZbP7ndO2go9mF4BAdn9DkglzsFh3IuxlnYdO/ld0Rkm+ja4+JjN
Xs1rhO4q13CNWHX2MCGzUyXs6mHUmbVZQaJhoUcw7I5fDFTfcK 3Yx07bM7AhODUR
8RsGYtoIYxBO44gt8m+tFGoXNNIvahbCkEHcgfXvyPDRZwajGP zL6qNUx/oQBhcH
3Hz3rTz6N/KmxgngF3sIbHtY6smIL9X8O62HpsJV84B4unvyPGdnmuIVUpcI 0jhR
GbSjFCZTSiB0Dm1zSaOa
=4NmC
-----END PGP SIGNATURE-----