By anonymous123 - 2/1/2012 4:44:28 AM
Hello Pragma,
I need to connect to Pragma SSH Server by using the public key authentication method. Need to know the steps needed to configure Pragma Fortress SSH for public key authentication. Please post your reply with detailed instructions ASAP.
Thank you.
|
By Technical Support Group (TSG) - 2/1/2012 5:03:02 AM
Hello,
Here are the steps that you need to follow to configure Pragma Fortress SSH Server so that you can use the "public key/certificate" authentication method to connect:
In order to make an SSH connection to Pragma FortressSSH server using the public key authentication method, we recommend using our auto-store feature for server side storage of public keys due to the non-standardized syntax of public keys and the exact location for storage. To use our auto-store feature please do the following:
On the server side, under Local Server Configuration > Authentication > Public Key Options, make sure that the "Public Key/Certificate" option is checked and the "Store keys in authorized file" option is also checked under the section labeled "Automatically Store Public Keys". De-select the GSSAPI authentication option so that you always authenticate using the public key method. On the Authentication -> Password Options page choose to either prompt or always store the password. This will allow for full user context for your users authenticated by certificate.
Client-side configuration (Unix client):
On the client side (UNIX side), if a key pair is not already available to connect with, use the sshkeygen.exe key generator program to create a public-private key pair ((id_dsa & id_dsa.pub) OR (id_rsa & id_rsa.pub)). Then specify the public key in the ssh command parameter to connect to the windows machine running Pragma FortressSSH.
For example: ssh -i id_dsa. domain\\username@windows_machine_name_OR_IP_address
First time you try the above, you will be prompted for password and the content of the public key that you specified in the ssh command parameter (e.g. id_dsa) will automatically get stored in a file called "authorized_keys2" on the Windows machine (located under %USERPROFILE%\Application Data (or AppData\Roaming)\PragmaSSH). So the next time you connect, you will be logged in automatically. Enter "yes" when you are prompted regarding caching of your user crendtials. If you would like to manually store your key, you would copy your public key in the same location, making sure to match the user profile location and key formatting exactly.
Client-side configuration (Windows client):
If a key pair is not already available to connect with, use a Windows ssh key generator program to create a public-private key pair ((id_dsa & id_dsa.pub) OR (id_rsa & id_rsa.pub)). Then specify the public key in the ssh command parameter or in the appropriate field if using a GUI SSH client to connect to the windows machine running Pragma Fortress SSH Server.
First time you connect, you will be prompted for password and the content of the public key that you specified will be automatically stored in a file called "authorized_keys2" on the server-side Windows machine (located under %USERPROFILE%\Application Data (or AppData\Roaming)\PragmaSSH). So next time you connect, you will be logged in automatically. If you would like to manually store your key, you would copy your public key in the same location, making sure to match the user profile location and key formatting exactly.
Hope this helps.
Thank you,
Technical Support Group (TSG) Pragma Systems, Inc.
|
|