Christopher Juckins

SysAdmin Tips, Tricks and other Software Tools

User Tools

Site Tools


ssh_without_a_password_using_public_private_keys

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
ssh_without_a_password_using_public_private_keys [2008/01/30 21:25] juckinsssh_without_a_password_using_public_private_keys [2025/06/08 14:51] (current) juckins
Line 1: Line 1:
-======SSH / rysnc without password====== +==== SSH / rysnc without password ====
-make sure the same versions of ssh are on both machines (open version 3.1+ works best for HP-UX boxes) \\ +
-need to configure client (machine connecting from) and server (machine connecting to) \\ +
-on client:  create dsa and rsa public and private keys with the following: \\ +
-cd to ~/.ssh \\ +
-ssh-keygen -t rsa -f ~/.ssh/id_rsa \\ +
-ssh-keygen -t dsa -f ~/.ssh/id_dsa \\ +
-this creates id_dsa, id_dsa.pub, id_rsa, id_rsa.pub - optionally can enter a 'passphrase' when prompted \\+
  
-on server: \\ +Make sure the same versions of ssh are on both machines. \\ 
-cd ~/.ssh/ \\ +You need to configure both client (machine connecting from) and server (machine connecting to). \\ 
-create authorized_keys files +On client, create ecdsa public and private keys (optionally you can also create rsa and dsa versions) with the following: \\ 
-copy the id_dsa.pub and id_rsa.pub from client into authorized_keys file \\ +<code> 
-make sure permissions 644 on authorized_keys \\+cd ~/.ssh 
 +ssh-keygen -t ecdsa -f ~/.ssh/id_ecdsa 
 +ssh-keygen -t rsa -f ~/.ssh/id_rsa 
 +ssh-keygen -t dsa -f ~/.ssh/id_dsa 
 +</code> 
 +This creates id_ecdsa, id_ecdsa.pub, id_rsa, id_rsa.pub, id_dsa, id_dsa.pub - optionally can enter a 'passphrase' when prompted \\ 
 + 
 +From the client, copy the ssh public keys to the server using the following: 
 + 
 +  ssh-copy-id username@remote_host 
 +   
 +Follow the prompts.  If successful you should be able to ''ssh username@remote_host'' without a password now. 
 + 
 +To do this process manually on the server: \\ 
 +<code> 
 +cd ~/.ssh/ 
 +</code> 
 +vi authorized_keys \\ 
 +Copy the id_dsa.pub and id_rsa.pub from client into authorized_keys file \\ 
 +Make sure permissions 600 on authorized_keys \\ 
 +Also: 
 +<code> 
 +chmod 0700 /home/<user's-home-directory>/.ssh -R 
 +</code>
  
 Repeat process for creating keys on server, and copy the .pub keys to the client's ~/.ssh/authorized_keys file. \\ Repeat process for creating keys on server, and copy the .pub keys to the client's ~/.ssh/authorized_keys file. \\
Line 19: Line 35:
  
 To restart sshd: kill running sshd process \\ To restart sshd: kill running sshd process \\
-issue the command /sbin/init.d/sshd \\+now issue
 +<code>/sbin/init.d/sshd 
 +</code>
  
-Or for Red Hat systems: service sshd restart \\+Or for RedHat systems: 
 +<code> 
 +service sshd restart 
 +</code>
ssh_without_a_password_using_public_private_keys.1201746308.txt.gz · Last modified: by juckins