05-22-2007
The key pair should not 'stop working'. If a previously working key-based authentication has stopped working, it is probably the result of some file/directory permissions change rather than a corruption of the key-pair.
You could always try generating a new key-pair, but there is a good chance that it won't work either.
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
do we need root access for the remote server to ssh without a password(i.e by using id_rsa.pub method)??? (1 Reply)
Discussion started by: roshanjain2
1 Replies
2. UNIX for Advanced & Expert Users
Hi,
I am trying to scp a file from our Unix server to the local Windows machine.I have created the key pair in Unix server using ssh-keygen command in unix.
But I am not sure where can we put the public key(generated on Unix) in Windows machine so that scp from Unix machine to Windows is... (3 Replies)
Discussion started by: dennis.jacob
3 Replies
3. Shell Programming and Scripting
I am writing a script that needs to access various servers some of which are not ssh enabled. In order to access the ssh enabled servers I am using the following command to generate the public key :
ssh-keygen -t rsa
Is there a similar command for the other servers as well.
If I try to use... (1 Reply)
Discussion started by: ravneet123
1 Replies
4. UNIX for Advanced & Expert Users
I am writing a script that needs to access various servers some of which are not ssh enabled. In order to access the ssh enabled servers I am using the following command to generate the public key :
ssh-keygen -t rsa
Is there a similar command for the other servers as well.
If I try to use... (1 Reply)
Discussion started by: ravneet123
1 Replies
5. AIX
Hi all,
I have N number of AIX hosts, where I need to login frequently and do some routine tasks (run some scripts). I need to setup ssh public/private key, so I can auto-login via a master (wrapper) script and run each script in each server.
I am trying to setup/generate ssh keys, but am... (6 Replies)
Discussion started by: haroon_a
6 Replies
6. Shell Programming and Scripting
hello,
iam able to ssh to a linux server from a linux server called "machine1" using the private/public key method, so I dont need to enter any password when I run my script but iam not able to ssh from machine1 to a UNIX server, access is denied.
note that I am using an application id which is... (6 Replies)
Discussion started by: wydadi
6 Replies
7. Red Hat
Hi All;
I have an issue with password less authentication via ssh ( v2)
I have two servers Server A and Server B, following are the server details
Server A
OS - HP UX B.11.11 U 9000/800
SSH - OpenSSH_4.3p2-hpn, OpenSSL 0.9.7i 14 Oct 2005
HP-UX Secure Shell-A.04.30.000, HP-UX... (3 Replies)
Discussion started by: maverick_here
3 Replies
8. Solaris
Hi, I've used the following way to set ssh public key authentication and it is working fine on Solaris 10, RedHat Linux and SuSE Linux servers without any problem. But I got error 'Server refused our key' on Solaris 8 system. Solaris 8 uses SSH2 too. Why? Please help. Thanks.
... (1 Reply)
Discussion started by: aixlover
1 Replies
9. UNIX for Dummies Questions & Answers
Hi,
please guide me create a public/private key using ssh-keygen, lets say I have been access to server named pngpcdb1with a userid and password ...!!! and also please explain in detail the concept of these keys and ssh as I was planning to use them in ftp related scripts..! Thanks in... (1 Reply)
Discussion started by: rahul125
1 Replies
10. UNIX for Advanced & Expert Users
My password-free ssh connection has worked in the past but has stopped working and I can't get it going again.
The files in .ssh on both source and target are set to 600:
drwx------ 2 ingres 1024 Mar 2 13:57 .
drwxr-xr-x 25 ingres 2048 Mar 29 09:38 ..
-rw------- 1 ingres ... (9 Replies)
Discussion started by: Catullus
9 Replies
LEARN ABOUT DEBIAN
shib-keygen
SHIB-KEYGEN(8) Shibboleth SHIB-KEYGEN(8)
NAME
shib-keygen - Generate a key pair for a Shibboleth SP
SYNOPSIS
shib-keygen [-bf] [-e entity-id] [-g group]
[-h hostname] [-o output-dir] [-u user] [-y years]
DESCRIPTION
Generate a self-signed X.509 certificate for a Shibboleth SP. By default, the certificate will be for the local fully-qualified (as
returned by "hostname --fqdn") hostname. An entity ID can be specified with the -e flag. The openssl command-line client is used to
generate the key pair. By default, the public certificate will be created in /etc/shibboleth/sp-cert.pem and the private key in
/etc/shibboleth/sp-key.pem.
OPTIONS
-b Suppress all standard error output when creating the certificate. This option is normally only used by the package build.
-e entity-id
Add entity-id (which should be a URI) as an alternative name for the certificate.
-f Remove /etc/shibboleth/sp-cert.pem and /etc/shibboleth/sp-key.pem before generating a new certificate. Without this option, if those
files already exist, shib-keygen prints an error and exits rather than overwriting them.
-g group
After generating the key and certificate, change the group ownership of the key file to this group. By default, the group used is
"_shibd".
-h hostname
Specify the fully-qualified domain name for which to generate a certificate. If this option isn't given, the hostname defaults to the
result of "hostname --fqdn".
-o output-dir
Store sp-cert.pem and sp-key.pem in the directory output-dir rather than the default of /etc/shibboleth.
-u user
After generating the key and certificate, change the ownership of the key file to this user. This is used to allow the key to be read
by a non-root user so that shibd can be run as a non-root user. By default, the key is owned by "_shibd".
-y years
The number of years for which the certificate should be valid. The default expiration time is ten years into the future.
FILES
/etc/shibboleth/sp-cert.cnf
The OpenSSL configuration file used for generating the self-signed certificate. This configuration file is generated when the script
is run and deleted afterwards.
/etc/shibboelth/sp-cert.pem
The default location of the public certificate created by this script.
/etc/shibboleth/sp-key.pem
The default location of the private key for the certificate created by this script.
These three files are stored in the directory given with -o instead, if that option is given.
AUTHOR
This manual page was written by Russ Allbery for Debian GNU/Linux.
COPYRIGHT
Copyright 2008, 2011 Russ Allbery. This manual page is hereby placed into the public domain by its author.
2.4.3 2012-02-16 SHIB-KEYGEN(8)