Skip to content

Commit e4264af

Browse files
author
Brian McCallister
committed
Diagram in README
1 parent 4a7f592 commit e4264af

File tree

1 file changed

+28
-0
lines changed

1 file changed

+28
-0
lines changed

README.md

Lines changed: 28 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,34 @@ The Agent will re-use an authentication token until it stops working. A typical
88

99
The Agent generates a new keypair when it starts, and never exposes the private key or writes it to disk. The CA loads the private key, and also never exposes it or writes it to disk.
1010

11+
```
12+
+-------+ +---------------+ +-------+ +-----+ +---------+
13+
| User | | Authenticator | | Agent | | CA | | Policy |
14+
+-------+ +---------------+ +-------+ +-----+ +---------+
15+
| | | | |
16+
| Authenticate | | | |
17+
|--------------------->| | | |
18+
| | | | |
19+
| | Provide token | | |
20+
| |------------------>| | |
21+
| | | | |
22+
| | | Request Certificate | |
23+
| | |----------------------->| |
24+
| | | | |
25+
| | | | Authorize |
26+
| | | |----------------->|
27+
| | | | |
28+
| | | | Cert Params |
29+
| | | |<-----------------|
30+
| | | | |
31+
| | | Certificate | |
32+
| | |<-----------------------| |
33+
| | | | |
34+
| Use SSH | | | |
35+
|----------------------------------------->| | |
36+
| | | | |
37+
```
38+
1139
# Setting up clients
1240

1341
Users will typically specify the use of the Epithet SSH Agent for a hostname pattern:

0 commit comments

Comments
 (0)