[SunHELP] SUMMARY: ssh2 key auth
Wed Jul 10 09:16:49 CDT 2002
much thanks to Larry Snyder and Ben Ricker for assistance. Hopefully
someone else can benefit as this is confusing as hell if you are new
to it.
my troubles were with the "identification" and "authorization" files
as they are parsed by ssh and must contain valid keywords and reference
the actual key filenames.
SSH2 v3.1
**** CLIENT MACHINE ****
I ran ssh-keygen2 (null pass phrase) which created
Private key saved to /opt/home/luser/.ssh2/id_dsa_1024_a
Public key saved to /opt/home/luser/.ssh2/id_dsa_1024_a.pub
then:
cd /opt/home/luser/.ssh2
echo "IdKey id_dsa_1024_a" > identification
then ftp'd id_dsa_1024_a.pub to the server, same dir, its recommended
that you delete the pub key off the client
**** SERVER MACHINE ****
cd /opt/home/luser/.ssh2
echo "Key id_dsa_1024_a.pub" > authorization
I modified /etc/ssh2/sshd2_config uncommenting AllowedAuthentications
## Authentication
## Hostbased and PAM are not enabled by default.
# BannerMessageFile /etc/ssh2/ssh_banner_message
# BannerMessageFile /etc/issue.net
# PasswordGuesses 3
# AllowedAuthentications hostbased,publickey,password
# AllowedAuthentications publickey,pam-1 at ssh.com
AllowedAuthentications publickey,password
# RequiredAuthentications publickey,password
# HostbasedAuthForceClientHostnameDNSMatch no
# SshPAMClientPath ssh-pam-client
and restarted /etc/init.d/sshd2
More information about the SunHELP
mailing list