Difference between revisions of "Setting up Public key authentication"
Timdavidson (talk | contribs) (→Instructions) |
Timdavidson (talk | contribs) (→Troubleshooting) |
||
Line 33: | Line 33: | ||
# Does the paste string for authorized_keys need bits removing from each end? |
# Does the paste string for authorized_keys need bits removing from each end? |
||
+ | #* The complete string should be used - the initial '''ssh-rsa''' or equivalent should be followed by a space then the key, ending in '''<nowiki>==</nowiki>'''. The bit at the end is a comment that you can use to identify the key, eg <username>@<hostname> |
||
+ | # Public key is not accepted. |
||
+ | #* Make sure that the correct permissions are set on your '''.ssh''' directory and '''authorized_keys''' file. They should be '''0700''' and '''0600''' respectively. |
||
[[Category:IT]] |
[[Category:IT]] |
Revision as of 13:51, 5 November 2009
Windows
Requirements
You will need:
- PuTTY with PuTTYgen and Pageant. A complete installer can be downloaded from [1].
- WinSCP or other SFTP client. WinSCP can be downloaded from [2].
Instructions
- Open PuTTYgen.
- Click 'Generate' to create a new key.
- Enter a passphrase.
- Save the Private key file. It should have an extension .ppk.
- Copy the public key from the text box, then close PuTTYgen.
- Open WinSCP or equivalent and connect to filmsoc.warwick.ac.uk. Login with your username and password.
- Open the directory .ssh (note the dot) or create it if it doesn't exist.
- Open the file authorized_keys for editing, or create a new file if it doesn't exist.
- Paste in your public key, making sure it is on a single line.
- Set permission on the .ssh directory to 0700 (rwx------) and on authorized_keys to 0600 (rw-------)
- Close WinSCP or equivalent.
Usage
- Open Pageant: an icon should appear in the system tray.
- (Right-)click the icon and select add key.
- Open your private keyfile and enter your passphrase when requested.
Programs such as PuTTY, WinSCP, bzr, etc. should automatically detect the loaded key and use that for authentication - just supply your username where relevant.
Troubleshooting
Okay, so I can't get this to work. If you succeed, please answer following;
- Does the paste string for authorized_keys need bits removing from each end?
- The complete string should be used - the initial ssh-rsa or equivalent should be followed by a space then the key, ending in ==. The bit at the end is a comment that you can use to identify the key, eg <username>@<hostname>
- Public key is not accepted.
- Make sure that the correct permissions are set on your .ssh directory and authorized_keys file. They should be 0700 and 0600 respectively.