1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
|
TIPS to use SSH RSA Authentication
==================================
$Id: README.SSHAuth,v 1.1.2.1 2001/06/15 12:43:00 cvs Exp $
To use PICA, you will need to have SSH RSA authentication working. If you
don't know how to do it, follow these steps:
1. Install SSH (or OpenSSH) on every server you want to administer using PICA.
2. Create a pair of RSA keys (if you already have one, you can use it):
ssh-keygen -t dsa
3. Distribute the public key to the remote servers.
PICA can help you in this step. The basic object.conf file includes an
object to simplify public key distribution. Just append id_dsa.pub file
to $picasrc/SSHAuth/authorized_keys2:
cat ~/.ssh/id_dsa.pub >> /var/lib/pica/SSHAuth/authorized_keys2
you can add as many keys has you want to this file. All that keys will
have access to the server. You can even use pica conditionals...
Once you have your public key in authorized_keys2, run:
pica -iv +F sshauth +H remotehost
you will have to type remotehost's root password...
4. Run the ssh agent in your local shell
eval `ssh-agent`
5. Load the private key:
ssh-add
That's it!!, now you can access any remote server without typing passwords
NOTE!!:
For security, you should unload the private key from memory when you finish
working with the command:
ssh-add -d
For more info about SSH RSA authentication, read the OpenSSH documentation
|
