03-24-2016
Add your public SSH key to the
.ssh/authorized_keys file in the users home directory.
If you don't have an SSH key pair, generate one with
ssh-keygen. If you give it a password while generating, you'll need to enter that password when logging in, so I'm guessing you'll want to leave that blank.
You also have to make sure permissions are set correctly on various files and folders:
- Home dir: no more than 755 (not group or world writable).
- .ssh dir: no more than 755 (not group or world writable). (mkdir -m755
- authorized_keys file: not more than 644 (not group or world writable)
- id_rsa.pub (Public key) file: not more than 644 (not group or world writeable)
- id_rsa (Private key) file: not more than 600 (not group or world readable)
Last edited by acascianelli; 03-24-2016 at 04:16 PM..
10 More Discussions You Might Find Interesting
1. HP-UX
There is two server, server A and server B. In server A, I would like to login ssh to server B without typing password. (no need for ssh2)
Therefore, I do the followings:
Server A:
>cd ~
>mkdir .ssh
>ssh-keygen -t dsa -f .ssh/id_dsa
Then copy the file id_dsa.pub to Server B
Server B:... (2 Replies)
Discussion started by: alfredo
2 Replies
2. Solaris
Hi Gurus
I have a few Sol 5.9 servers and i have enabled password less authentication between them for my user ID. Often i have found that when my password has expired,the login fails.
Resetting my password reenables the keys.
Do i need to do something to avoid this scenario or is this... (2 Replies)
Discussion started by: Renjesh
2 Replies
3. Shell Programming and Scripting
ssh/sftp login by passing password , is it possible.Don't want to expect. (1 Reply)
Discussion started by: dinjo_jo
1 Replies
4. Solaris
Hi,
I am using DSEE 6.3 to authenticate and authorize my Solaris 9 and 10 users. Everything works fine except password expiration. I use built-in global password policy for all users. The policy works well. However I could not find the right pam configuration in order to prompt users at ssh... (2 Replies)
Discussion started by: niyazi
2 Replies
5. Shell Programming and Scripting
Hello,
I need to find a way to connect from server1 to 30 other servers using a single line command in order to run various command from the other 30 servers.
I am looking for a single line connection command in which i can provide the server name user name and password and connect to the... (2 Replies)
Discussion started by: LiorAmitai
2 Replies
6. Emergency UNIX and Linux Support
Hi All,
I am facing issue in setting up passwordless login through ssh on two Solaris-10 boxes. user-id ravrwa from server tsapiq04-zrwdq01 should be able to login to server tsbrit03 as cpsuserq, which is not happening. I am not sure where is the problem, while keys are already all set. Here is... (14 Replies)
Discussion started by: solaris_1977
14 Replies
7. Solaris
Hello friends,
I have the problem with password less login in solaris 10.
Issue : In solaris 10 I have 2 different users on is oracle and the other is archmon. when I try to ssh to the other server from oracle it is successful but when I try to ssh from archmon it fails, and it asks for the... (1 Reply)
Discussion started by: Pavankrv
1 Replies
8. Cybersecurity
Hi,
I have setup password less ssh connection between Server A and Server B and I am able to connect with User2.
But my requirement is, User 1 run a script in Server A to ssh into Server B as User 2 but it is asking password every time I execute.
Server A:
Login as User 1 and execute sh... (8 Replies)
Discussion started by: sakthi.99it
8 Replies
9. Cybersecurity
Hi,
It is continuation with my other thread, The issue i found is U1 does not set properly for password less ssh.
for setting up password less ssh i followed the following steps
1. ssh-keygen
2. ssh-copy-id -i ~/.ssh/id_rsa.pub hostname
3. /usr/bin/ssh -t -t U1@hostname sample.sh
... (3 Replies)
Discussion started by: sakthi.99it
3 Replies
10. Solaris
HI Community.
I was trying to create ssh password less authentication for one user called night and it's not working for me.
These are the steps I followed:-
I have logged into the server and issued ssh-ketgen -t rsabash-3.2$ ssh-keygen -t rsa
Generating public/private rsa key pair.... (4 Replies)
Discussion started by: bentech4u
4 Replies
LEARN ABOUT DEBIAN
oneuser
ONEUSER(1) oneuser(1) -- manages OpenNebula users ONEUSER(1)
NAME
oneuser
SYNOPSIS
oneuser command [args] [options]
OPTIONS
-r, --read-file Read password from file
--sha1 The password will be hashed using the sha1 algorithm
--ssh SSH Auth system
--x509 x509 Auth system for x509 certificates
-k, --key path_to_private_key_pem Path to the Private Key of the User
-c, --cert path_to_user_cert_pem Path to the Certificate of the User
--driver driver Driver to autehnticate this user
--x509_proxy x509 Auth system based on x509 proxy certificates
--proxy path_to_user_proxy_pem Path to the user proxy certificate
--time x Token duration in seconds, defaults to 3600 (1 h)
-l, --list x,y,z Selects columns to display with list command
-d, --delay x Sets the delay in seconds for top command
-x, --xml Show the resource in xml format
-n, --numeric Do not translate user and group IDs
-v, --verbose Verbose mode
-h, --help Show this message
-V, --version Show version and copyright information
COMMANDS
o create username [password]
Creates a new User
Examples:
oneuser create my_user my_password
oneuser create my_user -r /tmp/mypass
oneuser create my_user --ssh --key /tmp/id_rsa
oneuser create my_user --ssh -r /tmp/public_key
oneuser create my_user --x509 --cert /tmp/my_cert.pem
valid options: read_file, sha1, ssh, x509, key, cert, driver
o update userid
Launches the system editor to modify and update the template contents
o login username
Creates the Login token for authentication
Examples:
oneuser login my_user --ssh --key /tmp/id_rsa --time 72000
oneuser login my_user --x509 --cert /tmp/my_cert.pem --key /tmp/my_key.pk --time 72000
oneuser login my_user --x509_proxy --proxy /tmp/my_cert.pem --time 72000
valid options: ssh, x509, x509_proxy, key, cert, proxy, time
o key
Shows a public key from a private SSH key. Use it as password
for the SSH authentication mechanism.
valid options: key
o delete range|userid_list
Deletes the given User
o passwd userid [password]
Changes the given User's password
valid options: read_file, sha1, ssh, x509, key, cert, driver
o chgrp range|userid_list groupid
Changes the User's main group
o chauth userid [auth] [password]
Changes the User's auth driver and its password (optional)
Examples:
oneuser chauth my_user core
oneuser chauth my_user core new_password
oneuser chauth my_user core -r /tmp/mypass
oneuser chauth my_user --ssh --key /home/oneadmin/.ssh/id_rsa
oneuser chauth my_user --ssh -r /tmp/public_key
oneuser chauth my_user --x509 --cert /tmp/my_cert.pem
valid options: read_file, sha1, ssh, x509, key, cert, driver
o list
Lists Users in the pool
valid options: list, delay, xml, numeric
o show [userid]
Shows information for the given User
valid options: xml
ARGUMENT FORMATS
o file
Path to a file
o range
List of id's in the form 1,8..15
o text
String
o groupid
OpenNebula GROUP name or id
o userid
OpenNebula USER name or id
o userid_list
Comma-separated list of OpenNebula USER names or ids
o password
User password
LICENSE
OpenNebula 3.4.1 Copyright 2002-2012, OpenNebula Project Leads (OpenNebula.org)
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may
obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
April 2012 ONEUSER(1)