https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462534#M210340 If you haven't changed the default sshd_config file (which contains sensible default settings) then public key authorization will work.<BR />You just need to create a private/public pair of RSA keys, and distribute the public keys to a file called authorized_keys in a subdirectory .ssh beneath the home directory of users on all hosts where you wish to log in.<BR />Not to be asked for a passphrase you either have to create those keys with an empty passphrase (or revoke an existing one from an existing pair), or you need to start up an ssh-agent.<BR />Usually the first method is a baerable compromise as far as security is concerned.<BR />You can create the keys by ssh-keygen.<BR />e.g.<BR />Login as the account you connect from.<BR />Then you could issue (find out the path of ssh-keygen if it's not in your PATH) something like<BR /> <BR />ssh-keygen -t rsa -b 1024 -N "" -f $HOME/.ssh/id_rsa<BR /> <BR />to generate an RSA key pair<BR />(see manpage of ssh-kegen for details)<BR /> <BR />You can repeat this for other crypto systems like DSA, or RSA1 if you connect to protocol 1 servers.<BR /> <BR />The most "dangerous" part is the appending of your public key (denoted by the suffix .pub) to the aforemetioned authorized_keys file<BR />(caveat "man-in-the-middle")<BR />But usually ssh and remote cat \&gt;\&gt; will suffice if you know you can trust the route between client and server. Thu, 13 Jan 2005 09:40:04 GMT Ralph Grothe 2005-01-13T09:40:04Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462530#M210336 Hi,<BR /><BR />I just installed openssh3.9p1 depot on HP-UX box Ver 11.11<BR /><BR />whene i try to bring the demon up i get the result :<BR />Privilege separation user sshd dose not exist<BR />EXIT CODE:255<BR /><BR />can someone help me pleas ? Thu, 13 Jan 2005 09:02:32 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462530#M210336 Avi Liani 2005-01-13T09:02:32Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462531#M210337 when UsePrivilegeSeparation is set to yes in sshd_config file, sshd will try to run as a user called sshd. If you did not create this user, it won't work.<BR />Solutions :<BR />. Create user sshd<BR />. Set UsePrivilegeSeparation to no<BR /><BR />Regards,<BR /><BR />Fred<BR /> Thu, 13 Jan 2005 09:06:28 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462531#M210337 Fred Ruffet 2005-01-13T09:06:28Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462532#M210338 thenks, <BR /><BR />that work fine, but now when i tride to open session white : ssh <HOSTNAME><BR /><BR />i asking for password.<BR /><BR />how can i run ssh whith out asking for password ?</HOSTNAME> Thu, 13 Jan 2005 09:18:37 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462532#M210338 Avi Liani 2005-01-13T09:18:37Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462533#M210339 I am attaching a document on proper setup of password free ssh access between machines. You cat copy the key files using any utility you wish, X is not required. Besides that, the document is solid and works very well.<BR /><BR />SEP Thu, 13 Jan 2005 09:22:36 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462533#M210339 Steven E. Protter 2005-01-13T09:22:36Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462534#M210340 If you haven't changed the default sshd_config file (which contains sensible default settings) then public key authorization will work.<BR />You just need to create a private/public pair of RSA keys, and distribute the public keys to a file called authorized_keys in a subdirectory .ssh beneath the home directory of users on all hosts where you wish to log in.<BR />Not to be asked for a passphrase you either have to create those keys with an empty passphrase (or revoke an existing one from an existing pair), or you need to start up an ssh-agent.<BR />Usually the first method is a baerable compromise as far as security is concerned.<BR />You can create the keys by ssh-keygen.<BR />e.g.<BR />Login as the account you connect from.<BR />Then you could issue (find out the path of ssh-keygen if it's not in your PATH) something like<BR /> <BR />ssh-keygen -t rsa -b 1024 -N "" -f $HOME/.ssh/id_rsa<BR /> <BR />to generate an RSA key pair<BR />(see manpage of ssh-kegen for details)<BR /> <BR />You can repeat this for other crypto systems like DSA, or RSA1 if you connect to protocol 1 servers.<BR /> <BR />The most "dangerous" part is the appending of your public key (denoted by the suffix .pub) to the aforemetioned authorized_keys file<BR />(caveat "man-in-the-middle")<BR />But usually ssh and remote cat \&gt;\&gt; will suffice if you know you can trust the route between client and server. Thu, 13 Jan 2005 09:40:04 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462534#M210340 Ralph Grothe 2005-01-13T09:40:04Z https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462535#M210341 Hi,<BR /><BR />Try this link to setup ssh without password between different version of ssh/sshd.<BR /><BR /><A href="http://bumblebee.lcs.mit.edu/ssh2/" target="_blank">http://bumblebee.lcs.mit.edu/ssh2/</A><BR /><BR />Hope this helps.<BR /><BR />Regds<BR /> Thu, 13 Jan 2005 10:48:01 GMT https://community.hpe.com/t5/operating-system-hp-ux/ssh-problem/m-p/3462535#M210341 Sanjay_6 2005-01-13T10:48:01Z