Configuring a system for SSH access using shared public keys
This section provides a sample configuration of a vRouter for SSH access by using shared public keys, as shown in the following figure.
The example shows how to configure a vRouter for SSH access that uses shared public keys for authentication and to disable password authentication (though disabling password authentication is not a prerequisite to using shared public keys for authentication). In this case, the John Smith user (username = john ) already exists on the system. In addition, the public key (xxx.pub ) was previously generated (by using the Linux ssh-keygen command) and is located in a directory owned by the j2 user on xyz.abc.com.
To configure a system for SSH access by using shared public keys, perform the following steps in configuration mode.
Step | Command |
---|---|
Set the system to disable password authentication for SSH. Note that this step is not strictly necessary but required if users are to use only shared public key authentication. |
|
Commit the change. |
|
Display the changes. |
|
Load the shared public key (xxx.pub ) from the system on which it is located and associate it with the user named john. In this case, it is located on xyz.abc.com in a directory owned by the j2 user. |
|
Commit the change. |
|
Save the configuration so that the changes persist after reboot. |
|
Display the change. |
|