asked on
Openssh : keys generated on ssh server or ssh client
Q1 : basic question:
I have a Windows 2003 running Openssh server & a Linux box (ssh client).
The Linux box is the one that initiate sftp/ssh/scp connection to the Windows
box. I would like to use key authentication, so are the private+public keys
generated (ie ssh-key-gen) on Windows 2003 or on the Linux box?
Q2:
If the keys are generated on the Windows 2003 Openssh (Ver 3.8p1-1), can
someone provide the steps to generate the keys & how should the key be
added/processed on the Linux box to enable the Linux box to ssh into the
Windows 2003 box using the keys (ie no password needed)
Q3:
If the keys are generated on the Linux box (RHES 4.5), what's the command
to generate the keys & how should the keys be added/installed on the
Win 2003 box so that the Linux (ssh client) can ssh into the Windows box
without password (ie keys authentication
SSH / Telnet SoftwareLinux OS DevUnix OS
Last Comment
sunhux
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Public key you can get from Linux after generation.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thanks chaps.
2 more clarifications:
a) if my Linux ssh client has multiple (8 to be precise) Unix accounts that need to ssh into
the Win2003 Openssh server (all 8 use a common login id on Win2003 to ssh/scp), do
I need to generate 8 pairs of keys using each of the 8 Unix accounts or I can just use
root on my Linux box to generate 1 pair & then distribute the keys to the $HOME/.ssh
directories of each of the 8 Unix accounts & to $HOME/.ssh of the Win2003 id ?
b)when doing ssh-keygen on Linux, should I use dsa or rsa? Rather which is more
secure of the two?
ASKER
For question (b) above, which of the two ( rsa & dsa ) are supported by OpenSsh
in Windows 2003?
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
ok
I got a feeling that the ssh keys should be generated on the ssh client
(ie the Linux box in my case) & the public key is then sent to the Win2003
Openssh server.
suppose I have a login id on the Openssh Win2003 server, is
the following steps correct to install the public key into the Openssh
Win2003 server?
$ mkdir -p ~/.ssh If it doesn’t already exist
$ chmod 700 ~/.ssh
$ cd ~/.ssh
$ ssh-keygen -t rsa
$ cat ~/.ssh/id_rsa.pub | ssh remote_loginid@sshserver_h