|
NOTE: Protect the private key. Anyone with this key can access
the host without providing a password.
- Create a public/privatekey pair.
<See Configuring
Public-Key Authentication at HP.>
From the users account on the HPUX system, type:
ssh-keygen -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (~/.ssh/id_dsa): ...
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in ...
Your public key has been saved in ...
The key fingerprint is:
84:7d:f5:dd:88:f7:53:88:8a:6e:f7:85:04:28:6e:ed root@hostname
This command will create the files id_dsa and id_dsa.pub. The file id_dsa
contains the private key, please protect this file.
- Add the public key to the "~/.ssh/authorized_keys" file.
The is the directory
used by ssh-keygen. If the file does not exist, create it. Copy the contents
of id_dsa to authorized_keys. Set .ssh and authorized_keys to be not
world or group readable (chmod 600).
- Configure sshd_conf for public-key authentication.
PubkeyAuthentication
yes
- Restart sshd on the server.
- Move the private key to the users window directory as id_dsa.
The directory
name varies by version of Windows. Check the "About Secure92" dialog box for
the currently configured directory.
|
