HPE Community
Operating System - HP-UX
1847578 Members
3229 Online
110265 Solutions
New Discussion

Opensshh and Tectia incompatibility

 
SOLVED
Go to solution
Doug_95
Occasional Contributor

‎03-07-2005 09:19 AM

‎03-07-2005 09:19 AM

Opensshh and Tectia incompatibility

I am trying to implement Public Key authentication between an OpenSource SSH client to an HP-UX (11i) based Tectia commercial SSH server. (Version 4.0.3).

The public key from the opensource client works on other opensource servers.

I generated a key pair on another HP-UX server running the same OS and Tectia SSH software, and it worked fine. (Setting up the authorized keys is somewhat different, but I figured it out.)

I compared the two public keys, one from opensource and the other from another Tectia server and the formatting of the two files were very different. For example, the user ID and host name for the Tectia box was before the key in the file, in the opensource it is at the bottom.

Anyone know of a solution to this problem?

Thank you.
0 Kudos
Reply
4 REPLIES 4
Steven E. Protter
Exalted Contributor

‎03-07-2005 09:24 AM

‎03-07-2005 09:24 AM

Re: Opensshh and Tectia incompatibility

You might wish to try exchanging public keys between all servers generated by the same ssh server software.

Openssh is great, hp bases Secure Shell on it and I've had no trouble exchanging public keys between hp-ux and Linux servers.

Attaching my procedure, just in case.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Doug_95
Occasional Contributor

‎03-07-2005 09:37 AM

‎03-07-2005 09:37 AM

Re: Opensshh and Tectia incompatibility

Your procedure would work very well if the regular SSH server was in use. To illustrate how different Tectia from ssh.com is...

To create authorized keys....

Create the file ~/.ssh2/authorization

In it put the following:

key id_dsa_1024_a.pub

The file 'id_dsa_1024_a.pub' is a public key file residing in ~/.ssh2.

There is no file ~/.ssh/authorized_keys file.

I should add that I have been very careful to observe my file permissions (644) as that is always a show stopper for authorization keys.

0 Kudos
Reply
C. John Soos
Occasional Contributor

‎03-09-2005 06:20 AM

‎03-09-2005 06:20 AM

Solution

Re: Opensshh and Tectia incompatibility

Doug,

Check the man page for ssh-keygen on one of the OpenSSH servers; note the "-e" and "-i" options, which allow for exporting/importing of keygen files. Output is to stdout, so pipe to a file. Your input of a Tectia keygen file will now look like a OpenSSH keygen file. This worked for me with HP SSH 3.81 on HP-UX 11 and 11i and and Tectia server 4.1 on my "archival" data servers at HP-UX 10.20.
Reply
Julius Razon
New Member

‎09-26-2006 01:58 AM

‎09-26-2006 01:58 AM

Re: Opensshh and Tectia incompatibility

Doug,

Thanks, your procedure works for me. Great!

Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.