The SLC can import and export SSH keys to facilitate shared key authentication for all incoming and outgoing SSH connections.
To configure the SLC to use SSH keys to authenticate users:
Enter the following information:
Host and User Associated with Key
These entries are required in the following cases:
The imported key file does not contain the host that the user will be making an SSH connection from, or
The SLC local user login for the connection is different from the user name the key was generated from or is not included in the imported key file.
If any of these conditions are true, or the imported file is in SECSH format, then you must specify the user and host. (For more information, see the SLC User Guide.)
Host |
The host name or IP address from which the SSH connections to the SLC will be made. |
User |
The user ID of the user being given secure access to the SLC. |
Host & Login for Import
Host |
Select SCP or FTP as the method for importing the SSH keys. SCP is the default. |
User |
The IP address of the remote server from which to SCP or FTP the public key file. |
Filename |
The name of the public key file (for example, mykey.pub). May contain multiple keys. |
Path |
An optional pathname to the public key file. |
Login |
The user ID to use to SCP or FTP the file. |
Password/Retype Password |
The password to use to SCP or FTP the file. |
Export |
Select the type of key to export: New Key for User: Enables you to create a new key for a user and export the public key in a file. All Previously Created Keys: Does not create any keys, but exports all previously created public keys in one file. |
User |
The user ID of the person given secure access to the remote server. |
Key Name |
The name of the key. This will generate the public key filename (e.g., <keyname>.pub). |
Key Type |
Select either the RSA or the DSA encryption standard. RSA is the default. |
Number of Bits |
Select the number of bits in the key (512 or 1024). The default is 512. |
Passphrase/Retype Passphrase |
Optionally, enter a passphrase associated with the key. The passphrase may have up to 50 characters. The passphrase is an optional password that can be associated with an SSH key. It is unique to each user and to each key. |
SECSH Format |
Indicate whether the keys will be exported in SECSH format (by default the key is exported in OpenSSH format). |
Public Key Filename |
File name of the public host key. |
Host and Login for Export
Export via |
Select the method (SCP, FTP, or Cut and Paste) of exporting the key to the remote server. Cut and Paste, the default, requires no other parameters for export. |
Host |
The IP address of the remote server to which the SLC will SCP or FTP the public key file. |
Path |
The optional path of the file on the host to which the SLC will SCP or FTP the public key. |
Login |
The user ID to use to SCP or FTP the public key file. |
Password/Retype Password |
The password to use to SCP or FTP the public key file. |
To view or delete a key:
Select the key from the appropriate table. The View and Delete buttons become active.
To view the key, click the View button. A pop-up page displays the key.
To delete the key, click the Delete button.
To view, reset, or import SSH RSA1, RSA, and DSA host keys:
1. Click the SSH Server/Host Keys link at the top right.