Do you have F-Secure's SSH User's and Administrator's Guide? There's a good section in it on using public-key authentication.
Here's an overview of the steps you need to take:
-Generate a key pair with ssh-keygen2 on the client system.
-Create a file named "identification" in your $HOME/.ssh2 directory. The file must contain a line with the name of the key you want to use. Example:
IdKey id_dsa_1024_a
-Copy your public key to the remote host and place it in your $HOME/.ssh2 directory
-On the remote host, create a file named "authorization" in you $HOME/.ssh2 directory. It must contain a line with the name of the public key that matches what you specified on the client. Example:
Key id_dsa_1024_a.pub
This file is case sensitive so "Key" must have a capitol "K".
The above process must be done for each user. You may want to use a unique name for your keys. I like the format: user@host
Be sure you uncomment the following in the client's ssh2_config and the server's sshd2_config:
AllowedAuthentications publickey, password
That allows users to ssh with a key or a password.
When using keys, you have 2 methods for ssh'ing without the requirement of specifying a password or a passphrase. The first method is to specify a null passphrase. Do this with "ssh-keygen2 -P". This is not the most secure method because if you private key is stolen, whoever has it can ssh in.
The more secure method is to generate the key with a passphrase and then utilize ssh-agent2 and ssh-add2. ssh-agent2 should be executed on the client system before you attempt to ssh to the server. Then you run ssh-add2 to input the passphrase for the key you are using.
You really should read the User's and Administrator's Guide. Hopefully what I've written is enough to get you started but there's much more in the manual.
Darrell
"What, Me Worry?" - Alfred E. Neuman (Mad Magazine)
