Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 16 Mar 2000 14:57:59 +0200
From:      Giorgos Keramidas <keramida@ceid.upatras.gr>
To:        Sam Carleton <scarleton@miltonstreet.com>
Cc:        FreeBSD Questions <freebsd-questions@FreeBSD.ORG>
Subject:   Re: HELP!!! using RSA w/o passwords?
Message-ID:  <20000316145759.B6500@hades.hell.gr>
In-Reply-To: <38D02E15.56AEE21@miltonstreet.com>; from scarleton@miltonstreet.com on Wed, Mar 15, 2000 at 07:45:08PM -0500
References:  <38D02E15.56AEE21@miltonstreet.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Mar 15, 2000 at 07:45:08PM -0500, Sam Carleton wrote:
> Giorgos Keramidas wrote:
> 
> > On Mon, Mar 13, 2000 at 07:40:45PM -0500, Sam Carleton wrote:
> >
> > > I have both ssh and ssh2 installed on all my machines.  At present all
> > > that is needed to authenticate is the users password.  I would like to
> > > use RSA authentication without needed a password, but I cannot figure
> > > out how to do it.
> >
> > When you create your RSA key with ssh-keygen, and get prompted for a
> > password, just hit <RETURN> and you'll create an RSA key *without* any
> > password.  That should solve your problem.
> 
> The password that is needed is the normal login password, not the
> passphrase I typed in when generating the key.

Well, you might have RSAAuthentication disabled in the remote machine,
so let me elaborate on this.

There are two places where authentication of ssh can be changed/tweaked.

First of all, there is the configuration file of your sshd, which should
contain at least the following line to make RSA authentication a method
of authentication that is accepted by your sshd.

	% grep RSAAuth /etc/ssh/sshd_config
	RSAAuthentication yes

Edit your sshd configuration and change (or add) this line to permit
authentication with RSA keys.  You might need to restart your sshd, if
you're running it as a daemon, and not from inetd, in order for the
changes to take effect.

A second, and also important thing is to create with ssh-keygen an RSA
key that doesn't have a password.  Then copy the public key (usually
found as the file ~/.ssh/identity.pub in ssh1 installations) to the
~/.ssh/authorized_keys file in the remote machine, and you're done.

- Giorgos Keramidas


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000316145759.B6500>