NOTE: Protect the private key. Anyone with this key can access the host without providing a password.
- Create a public/privatekey pair.
<See Configuring Public-Key Authentication at HP.>
From the users account on the HPUX system, type:
ssh-keygen -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (~/.ssh/id_dsa): ...
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in ...
Your public key has been saved in ...
The key fingerprint is:
This command will create the files id_dsa and id_dsa.pub. The file id_dsa contains the private key, please
protect this file.
- Add the public key to the "~/.ssh/authorized_keys" file.
The is the directory used by ssh-keygen. If the
file does not exist, create it. Copy the contents of id_dsa.pub to authorized_keys. Set .ssh and authorized_keys
to be not world or group readable (chmod 600).
- Configure sshd_conf for public-key authentication.
- Restart sshd on the server.
- Move the private key to the users window directory as id_dsa.
The directory name varies by version of
Windows. Check the "About Secure92" dialog box for the currently configured directory.