Re: SSH Keys for password less ssh sessions

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



I do not know why you are writing a script for this. In redhat for ssh
key fingureprint do:
type ssh-keygen -t rsa or dsa
it will create two .files id_rsa and id_rsa.pub (if you type dsa it
will be id_dsa) in .ssh directory. copy id_rsa.pub key to other box in
.ssh directory and name that  authorized_keys.
Remember  .ssh should be 700 as permission. Now do ssh from that user
you should be able to login without local password.



On Tue, Jul 22, 2008 at 5:59 PM, Ben Kevan <ben.kevan@xxxxxxxxx> wrote:
> I know this may sound silly, but I have done this quite a few times (I come
> from a SUSE background), but this wouldn't work for me from a RHEL4 to a
> RHEL4 box).
>
> Here is what I am doing:
>
> for i in `cat filename`; do ssh-copy-id -i .ssh/id_dsa.pub username@$i; done
>
> I have copied over ssh-copy-id from another server (suse box) and it contains:
> #!/bin/sh
>
> # Shell script to install your identity.pub on a remote machine
> # Takes the remote machine name as an argument.
> # Obviously, the remote machine must accept password authentication,
> # or one of the other keys in your ssh-agent, for this to work.
>
> ID_FILE="${HOME}/.ssh/identity.pub"
>
> if [ "-i" = "$1" ]; then
>  shift
>  # check if we have 2 parameters left, if so the first is the new ID file
>  if [ -n "$2" ]; then
>    if expr "$1" : ".*\.pub" > /dev/null ; then
>      ID_FILE="$1"
>    else
>      ID_FILE="$1.pub"
>    fi
>    shift         # and this should leave $1 as the target name
>  fi
> else
>  if [ x$SSH_AUTH_SOCK != x ] ; then
>    GET_ID="$GET_ID ssh-add -L"
>  fi
> fi
>
> if [ -z "`eval $GET_ID`" ] && [ -r "${ID_FILE}" ] ; then
>  GET_ID="cat ${ID_FILE}"
> fi
>
> if [ -z "`eval $GET_ID`" ]; then
>  echo "$0: ERROR: No identities found" >&2
>  exit 1
> fi
>
> if [ "$#" -lt 1 ] || [ "$1" = "-h" ] || [ "$1" = "--help" ]; then
>  echo "Usage: $0 [-i [identity_file]] [user@]machine" >&2
>  exit 1
> fi
>
> { eval "$GET_ID" ; } | ssh $1 "umask 077; test -d .ssh || mkdir .ssh ; cat
>>> .ssh/authorized_keys" || exit 1
>
> cat <<EOF
> Now try logging into the machine, with "ssh '$1'", and check in:
>
>  .ssh/authorized_keys
>
> to make sure we haven't added extra keys that you weren't expecting.
>
> EOF
>
> -------------------------
>
> >From my suse box, I run this and authorized_keys is updated and I can now log
> into those from my suse box without the need for the password, HOWEVER from a
> RHEL4 box, I run that, and it runs through everything, but when I ssh to the
> other box, I am still prompted for my password. I see the matching key in
> authorized_keys, so I am kind of at a loss of what the issue is.
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>



-- 
Regards.
Sanjay Chakraborty

-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

[Index of Archives]     [CentOS]     [Kernel Development]     [PAM]     [Fedora Users]     [Red Hat Development]     [Big List of Linux Books]     [Linux Admin]     [Gimp]     [Asterisk PBX]     [Yosemite News]     [Red Hat Crash Utility]


  Powered by Linux