topic Re: ssh without password in Operating System - Linux

ssh without password

ITSD-ACCS — Mon, 07 Nov 2005 22:42:08 GMT

Hi,

I have a normal a/c called uat, and need to access a remote system machine called guest@machine1. They gave me a key and I have put into uat 's HOME under .ssh.

1. Let's say I am the client. Should I rename the given key as id_rsa or id_dsa or authorized_keys ? I am confused.

2. Since I am using an a/c called 'uat', but I want to sftp some files from there using 'guest' a/c. How can it be password less ?

THank you very much.

Re: ssh without password

Senthil Prabu.S_1 — Mon, 07 Nov 2005 23:01:26 GMT

Hi,
you must have same users on both the servers to have password-less authentication, ie using public keys. Also, you must rename the public key of the client as authorised_keys on the server machine.

Refer the following doc for setting up public key authentication between two unix machines.

Re: ssh without password

Patrick Terlisten — Tue, 08 Nov 2005 01:43:18 GMT

Hello,

you can overwrite the actual username with the option "-u" for ssh. If you are logged in with uat, and you want to connect a remote maschine with the login name "guest", use the command

ssh -u guest

Regards,
Patrick

Re: ssh without password

ITSD-ACCS — Tue, 08 Nov 2005 01:52:52 GMT

There is no -u option. I used -l. The point is, I want to do

Client Server
machine 1 ---> machine 2
(a/c : uat) (a/c: guest)

Now, I have a key generated from machine2, and have it pasted in /.ssh/authorized_keys in machine1. What else do I need to make it passwordless ?

Re: ssh without password

Alexander Chuzhoy — Tue, 08 Nov 2005 02:11:53 GMT

generaly that's it.

append the content of $HOME/.ssh/id_dsa.pub file to remotehost:/home/desired_user's_homedir/.ssh/authorized_keys file
and that's it you should be able to login as the desired_user without password on remotehost.
also make sure you have the correct permissions set on .ssh/*
id_dsa shoud have 600
all other files in .ssh can be 644

Re: ssh without password

ITSD-ACCS — Tue, 08 Nov 2005 03:14:38 GMT

To be specify, you mean gen key in the client and then have it pasted in server's authorized_keys ? Even if different user ?

Re: ssh without password

Alexander Chuzhoy — Tue, 08 Nov 2005 03:29:43 GMT

if you place/append the content of your user's .ssh/id_dsa.pub in .ssh/autorized_keys of any user on remote system (let's call him test1),then you'll be able to ssh/sftp from your user to test1 on remote system.
Thus
ssh -l test1 remotesystem will login without password

Re: ssh without password

Senthil Prabu.S_1 — Tue, 08 Nov 2005 03:54:39 GMT

Hi,
Create the ssh keys on the client, copy the id_rsa.pub to the guest home directory on the server, ie /home/guest/.ssh. Then execute these commands,

#chmod 0700 /home/guest/.ssh
#mv /home/guest/.ssh/id_rsa.pub /home/guest/.ssh/authorized_keys
#chmod 0600 /home/guest/.ssh/authorised_keys

Then execute from client machine
ssh guest@server

This should work, otherwise, execute ssh command with debugging option as
#ssh --v guest@server and post the output.

Re: ssh without password

Senthil Prabu.S_1 — Tue, 08 Nov 2005 03:56:09 GMT

And also, plz assign points to the replies. This will help you to get replies soon.

Re: ssh without password

Mike Stroyan — Wed, 09 Nov 2005 11:43:28 GMT

If you always want the uat account to use the guest account on machine2, you can specify
that as a default in ~uat/.ssh/config with
lines like-

Host machine2
User guest

This is documented in "man ssh_config".

Re: ssh without password

Patrick Terlisten — Wed, 09 Nov 2005 15:06:51 GMT

Hello,

mea maxima culpa. I mean "ssh -l", not "ssh -u". My fault.

Regards,
Patrick