Tested on Windows XP Pro SP2 on a Windows Domain network. The following instructions assume that you want to install to "C:\Program Files\OpenSSH" and that you want your SSH server to run under the user-ID "sshd" and that you'll create a home directory for sshd named C:\OpenSSH-server. You'll need to edit where appropriate if you make other choices.
- Install OpenSSH for Windows from http://sshwindows.sourceforge.net/ into C:\Program Files\OpenSSH (or other directory of your choosing). I refer to this directory as [install-dir] throughout this document.
- Run the attached batch file from a command prompt.
- Edit [install-dir]\etc\sshd_config and set UsePrivilegeSeparation to yes
- Right click on C:\OpenSSH-server, select the Security tab, and grant sshd (or whatever you named the account) and grant these permissions to the folder and subtree.
- Read
- Read & Execute
- List Folder Contents
- Full Control
- Also make the sshd account the Owner of the folder and subtree.
- Open the Services applet (from Control Panel/Administrative Tools) and change the OpenSSH service to use the sshd account.
- Stop and start the OpenSSH service.
At this point you've got password login. There is more work to be done to enable PKI-based login.