For the last few weeks I've been trying to setup SSH keys from my main Linux server to all of the other Linux servers that I use.
I'm using the HOWTO here
http://unix.stackexchange.com/questi...authentication
It didn't work. It was still asking for a password or the pass phrase.
So...I did my troubleshooting he
http://unix.stackexchange.com/questi...authentication
In the end, I deleted all of the public/private keys and did the following steps:
ssh-keygen (not specifiying a rsa key)
and then to copy over the key I did the following ssh-copy-id username@xx.xx.xx.xx
...and it worked!
I'm wanting to understand why this is working Vs the ways I'm seeing on other websites.
thanks
hi guys,
i understand the concept of a public and private key for ssh signing and encryption...i just dont get the implementation.
if you have a client and a server and you want two way communication do both have to have each others public keys in the .ssh/authorized_keys files on each respectively?
should you use a password? does it matter if you want to run say rsync from one to the other with a cron job or script?
does anybody just have a breakdown of exactly what you need to do and how it works in different situations...
i found this:
https://www.digitalocean.com/communi...up-ssh-keys--2
seemed to help...but im still not 100% clear...
hi people,
i reinstalled my server with centos 7 to get familiar with it...
i have a laptop that im using cygwin on to ssh into the centos 7 server.
i ran ssh-keygen -t rsa on the server and now in .ssh i have a public and private key created.
i copied the public key from the server to my C:\cygwin64\home\Administrator\.ssh\known_hosts file
now when i input:
ssh userontheserver@serversip
it asks for the passphrase which i created when i did the keygen
on the server
when i put the passphrase in it says permission denied
and returns me to the command line
what am i doing wrong?
do i have the steps correct?
am i right in saying that you need to have the servers public key in your known_hosts file on the client computer to get communication working?
Am trying to set up SSH key authentication with my new VPS.
When I use CyberDuck to log in to my VPS, the "fingerprint" is not matching the one that was created when my keys were created and the connection is failing.
I am wondering if the problem is due to the fact that I ran ssh-keygen on my MacBook and then copied and pasted the Public Key into a webform in cPanel?
While my host allows you to generate the key pair on the VPS, it creates a security issue in that I would then have to find a safe way to get my Private Key back to my MacBook.
So, instead, I opted for the opposite approach and chose to create the key pair on my Mac - thus leaving the Private Key untouched on my Mac.
Any idea what is going on?
Rob
I set up public key authentication between my MacBook and and VPS for added security and convenience when I SFTP things to my VPS.
Now I have some new clients who want me to manage their websites, and I want a similar set up for each client.
Do I need a public/private key pair for each client?
How can I be sure that whatever I do in my SFTP client doesn't put the other accounts - particularly my own VPS - at risk?
Thanks,
Rob
I have been asked to setup an SFTP which uses RSA public key authentication.
AS it was already in use I have opted to use CygWin and I can get it to work with passwords fine.
we are going to be hosting the SFTP server with users from the clients office connecting to it. The client has sent me their public key.
Having done LOts of reading and even more attempting to configure the server I just cant get it to work. Most of thetime I get..
ebug1: Host '127.0.0.1' is known and matches the ECDSA host key.
debug1: Found key in /home/ColoniAdmin/.ssh/known_hosts:1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /home/ColoniAdmin/.ssh/id_rsa
debug1: Trying private key: /home/ColoniAdmin/.ssh/id_dsa
debug1: Trying private key: /home/ColoniAdmin/.ssh/id_ecdsa
debug1: Trying private key: /home/ColoniAdmin/.ssh/id_ed25519
debug1: Next authentication method: keyboard-interactive
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: No more authentication methods to try.
Permission denied (publickey,keyboard-interactive).
I have once managed to get it to the point of asking for a passphrase for the private key but I don't have a private key (that I know of) just the public key the client sent us. and I certainly don't want to have to use passphrases
Their public key is in the authorized_key file on our server within the .ssh folder of their home folder. I have amended paswd and sshd_config to set home location and to allow RSA authentication.
All and any advice is super welcome, I have been doing this for 2 weeks now and i just wont work.
HELP HELP HELP!!!!!! ;-)
Thanks
Hello everyone from stackexchange,
I am a total Linux newbie, and for a short school task I have to perform the following action in Linux OpenWRT running in my virtualbox. I have tried multiple commands and googled a lot but I can't get it working. If someone could help me out on what to do, that would be awesome. I have looked through the manuals too but it doesnt seem to work.
Task: http://i.imgur.com/MeLcGJh.png
My OpenWRT screen: http://imgur.com/98OLB9Y
Many thanks.
I have 2 linux boxes
Code:
HP-UX server1 B.11.11 U 9000/800
and
Code:
CentOS release 6.3 (Final)
I need to setup a password-less ssh. I could login from HP-UX to cent os but not other way.
Is it possible to use password less ssh both ways ? Is there any extra step in HP to setup keygen?
what I am doing
Code:
ssh-keygen -t rsa
copy the ~/.ssh/id_rsa.pub from client machine to ~/.ssh/authorized_keys on server machine
Hi all,
Would love some advice about how to get a solution here.
Goal - join two separate ssh sessions together. I want to see if keys used to login to a bastion host can be different than keys used to login to server from bastion.
Scenario - I will login to a bastion host using ssh and my keys from my machine. The bastion host will then login to the actual server on my behalf - using a different set of keys. The ssh session from my machine to the bastion host and from the bastion host to the server now needs to be connected, for me to feel as if a transparent SSH proxy is just forwarding commands.
I have read up a bit on ssh proxies but it seems like this is not implemented right off the bat. I have read - http://en.wikibooks.org/wiki/OpenSSH...and_Jump_Hosts , I have also looked at screen sessions - but am not sure how to "merge" two ssh screen sessions together.
Any advice will be very helpful.
Thank you.
So I was able to successfully install CyberDuck on my MacBook and configure it with my VPS using SSH Authentication Keys and a Passphrase on my Private Key.
It seems to be working well, and I feel like I can trust it when uploading files to my VPS.
But what about downloading?
This may sound dumb, but I am not entirely sure how to securely download things (e.g. Server Backups) from my VPS to my MacBook using CyberDuck...
Sincerely,
Rob
If you're here for the very first time, and have a very
urgent problem I appreciate that you're quite likely to
have other things on your mind than reading on.
However, if you do take the time to read all that's
said here (and follow the links) you're more likely
to get helpful responses! :)
The following two posts from Linux-General are just as
valid here in Linux-Newbie as they are there.
http://www.linuxquestions.org/questi...hreadid=103564
http://www.linuxquestions.org/questi...threadid=45094
Thanks for reading!
Cheers,
Tink