This is the mail archive of the cygwin mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: Setting up SSH keys for password less connections for sftp



log in to the HPUX box as applmgr and run ssh-keygen as follows ssh-keygen -t rsa -N "" the quotes are important as this gives you a null passphrase

It will generate "id_rsa" and "id_rsa.pub" files in $HOME/applmgr/.ssh/

copy $HOME/applmgr/.ssh/id_rsa.pub to $HOME/applmgr/.ssh/ authorized_keys2

move $HOME/applmgr/.ssh/id_rsa to the W2K box

as
c:\Documents and Settings\colibri\.ssh\applmgr_id_rsa

on the W2K Box

set the permissions on the applmgr_id_rsa file to u=rw, g=none,o=none
by
chmod 0600 .ssh/applmgr_id_rsa

ssh -i applmgr_id_rsa applmgr@HPUXboxhostname

If I recall, the first time it prompts you for a password and generates the known hosts file.

Thereafter it should be passwordless.

The id_rsa file does not have to be named applmgr_id_rsa,
I only did that for clarity, just make sure the filename matches the filename given by the -i option to ssh


It's been a while since I've done this, but this is correct to the best of my memory.


Chris Shehan wrote:


Good Afternoon,

Thanks for your response. I have tried to work through both you answer and
the solution you provided in the web link. So far I am still unable to get
the passwordless connection to work.

Here is my setup:
Windows 2000 server. Windows user name is colibri. I have generated the RSA
keys which were created in the c:\Documents and Settings\colibri\.ssh
directory (id_rsa & id_rsa.pub).

The user that I wish to connect to on the HP UX server is applmgr. So I take
the id_rsa.pub file and copy it to the HPUX server. It was placed in the
/u02/app/applmgr/.ssh directly and named authorized_keys.

Supposedly once this is done I should be able to connect to the HPUX server
from the Windows server as applmgr via ssh or sftp (example : sftp
applmgr@finprod1 ) without being asked for a password... correct? I am still
prompted for a password.

Or is this process assuming that I have identical users on both servers with
identical passwords?
I am sure this is a very simple setup and that I am missing something
simple.

Please help me clarify the situation and/or point out my problem.

Thanks again for you help,
Chris Shehan








--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]