A number of sshd authorized_keys file options, such as "command", "environment", "expiry-time", and "from" (see man 8 sshd) require quoting around the value - i.e. an authorized_keys line beginning with from="192.168.0.10" works as intended but a line beginning with from=192.168.0.10 does not.
Unfortunately, using VyOS 1.1.8 (and, going by the git history at least, the same seems to be the case with current master) this fails because the configuration doesn't allow quotes.
jantman@apt-er01# set system login user jantman authentication public-keys jantman@phoenix.jasonantman.com options from='"192.168.0.24"' Cannot use the double quote (") character in a value string Value validation failed Set failed jantman@apt-er01# set system login user jantman authentication public-keys jantman@phoenix.jasonantman.com options from="'192.168.0.24'" Cannot use the single quote (') character in a value string Value validation failed Set failed [edit] jantman@apt-er01# set system login user jantman authentication public-keys jantman@phoenix.jasonantman.com options from=\"192.168.0.24\" Cannot use the double quote (") character in a value string Value validation failed Set failed [edit]
It would be very helpful if quoting was supported so that options like from worked, as there are cases such as automation and backups where I'd like to be able to limit certain SSH keys to only working from certain LAN hosts.