Difference between revisions of "Setting up Public key authentication"

From Warwick Student Cinema
Jump to: navigation, search
(Instructions)
 
(One intermediate revision by one other user not shown)
Line 1: Line 1:
  +
{{Outdated}}
  +
 
=Windows=
 
=Windows=
   
Line 4: Line 6:
   
 
You will need:
 
You will need:
* PuTTY with PuTTYgen and Pageant. A complete installer can be downloaded from [http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html].
+
* PuTTY with PuTTYgen and Pageant. A complete installer can be downloaded from https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html.
* WinSCP or other SFTP client. WinSCP can be downloaded from [http://winscp.net/eng/download.php].
+
* WinSCP or other SFTP client. WinSCP can be downloaded from https://winscp.net/eng/download.php.
   
 
==Instructions==
 
==Instructions==
Line 14: Line 16:
 
# Save the Private key file. It should have an extension .ppk.
 
# Save the Private key file. It should have an extension .ppk.
 
# Copy the public key from the text box, then close PuTTYgen.
 
# Copy the public key from the text box, then close PuTTYgen.
# Open WinSCP or equivalent and connect to '''filmsoc.warwick.ac.uk'''. Login with your username and password.
+
# Open WinSCP or equivalent and connect to '''warwick.film'''. Login with your username and password.
 
# Open the directory '''.ssh''' (note the dot) or create it if it doesn't exist.
 
# Open the directory '''.ssh''' (note the dot) or create it if it doesn't exist.
 
# Open the file '''authorized_keys''' for editing, or create a new file if it doesn't exist.
 
# Open the file '''authorized_keys''' for editing, or create a new file if it doesn't exist.
Line 33: Line 35:
   
 
# Does the paste string for authorized_keys need bits removing from each end?
 
# Does the paste string for authorized_keys need bits removing from each end?
  +
#* The complete string should be used - the initial '''ssh-rsa''' or equivalent should be followed by a space then the key, ending in '''<nowiki>==</nowiki>'''. The bit at the end is a comment that you can use to identify the key, eg <username>@<hostname>
  +
# Public key is not accepted.
  +
#* Make sure that the correct permissions are set on your '''.ssh''' directory and '''authorized_keys''' file. They should be '''0700''' and '''0600''' respectively.
   
 
[[Category:IT]]
 
[[Category:IT]]

Latest revision as of 22:59, 9 February 2019

Windows

Requirements

You will need:

Instructions

  1. Open PuTTYgen.
  2. Click 'Generate' to create a new key.
  3. Enter a passphrase.
  4. Save the Private key file. It should have an extension .ppk.
  5. Copy the public key from the text box, then close PuTTYgen.
  6. Open WinSCP or equivalent and connect to warwick.film. Login with your username and password.
  7. Open the directory .ssh (note the dot) or create it if it doesn't exist.
  8. Open the file authorized_keys for editing, or create a new file if it doesn't exist.
  9. Paste in your public key, making sure it is on a single line.
  10. Set permission on the .ssh directory to 0700 (rwx------) and on authorized_keys to 0600 (rw-------)
  11. Close WinSCP or equivalent.

Usage

  1. Open Pageant: an icon should appear in the system tray.
  2. (Right-)click the icon and select add key.
  3. Open your private keyfile and enter your passphrase when requested.

Programs such as PuTTY, WinSCP, bzr, etc. should automatically detect the loaded key and use that for authentication - just supply your username where relevant.

Troubleshooting

Okay, so I can't get this to work. If you succeed, please answer following;

  1. Does the paste string for authorized_keys need bits removing from each end?
    • The complete string should be used - the initial ssh-rsa or equivalent should be followed by a space then the key, ending in ==. The bit at the end is a comment that you can use to identify the key, eg <username>@<hostname>
  2. Public key is not accepted.
    • Make sure that the correct permissions are set on your .ssh directory and authorized_keys file. They should be 0700 and 0600 respectively.