Create SSH keys for Login » History » Version 10
Timo Eronen, 2016-05-04 08:28
1 | 1 | Timo Eronen | h1. Create SSH keys for Login |
---|---|---|---|
2 | 1 | Timo Eronen | |
3 | 1 | Timo Eronen | As an example we create keys for *titan* cluster. |
4 | 1 | Timo Eronen | |
5 | 10 | Timo Eronen | h3. 1) Login to (your personal) computer from which you want to access the Cluster and change into directory *~/.ssh/* |
6 | 1 | Timo Eronen | |
7 | 1 | Timo Eronen | <pre> |
8 | 1 | Timo Eronen | cd ~/.ssh/ |
9 | 1 | Timo Eronen | </pre> |
10 | 1 | Timo Eronen | |
11 | 1 | Timo Eronen | If you don't have such directory, create it and change into it. |
12 | 1 | Timo Eronen | |
13 | 10 | Timo Eronen | h3. 2) Create key pair using the following command. |
14 | 1 | Timo Eronen | |
15 | 1 | Timo Eronen | *DO NOT SETUP PASSPHRASE !!* |
16 | 1 | Timo Eronen | |
17 | 1 | Timo Eronen | <pre> |
18 | 1 | Timo Eronen | ssh-keygen -f id_rsa_titan -t rsa |
19 | 1 | Timo Eronen | </pre> |
20 | 1 | Timo Eronen | |
21 | 2 | Timo Eronen | Now you have key pair: |
22 | 1 | Timo Eronen | |
23 | 1 | Timo Eronen | * *id_rsa_titan* is your private key. *Keep it secret*. |
24 | 1 | Timo Eronen | * *id_rsa_titan.pub* is your public key. |
25 | 2 | Timo Eronen | |
26 | 10 | Timo Eronen | h3. 3) Make sure the private key has the right protection: |
27 | 2 | Timo Eronen | |
28 | 2 | Timo Eronen | <pre> |
29 | 1 | Timo Eronen | chmod 400 id_rsa_titan |
30 | 2 | Timo Eronen | </pre> |
31 | 1 | Timo Eronen | |
32 | 10 | Timo Eronen | h3. 4) Send the public key (id_rsa_titan.pub) to the Cluster: |
33 | 1 | Timo Eronen | |
34 | 1 | Timo Eronen | *DO NOT SEND FILE id_rsa_titan WHICH IS YOUR PRIVATE KEY AND SHOULD BE KEPT SECRET.* |
35 | 1 | Timo Eronen | |
36 | 1 | Timo Eronen | <pre> |
37 | 1 | Timo Eronen | scp id_rsa_titan.pub titan.utu.fi: |
38 | 1 | Timo Eronen | </pre> |
39 | 1 | Timo Eronen | |
40 | 10 | Timo Eronen | h3. 5) Login into titan.utu.fi and while logged change into directory *~/.ssh* |
41 | 1 | Timo Eronen | |
42 | 1 | Timo Eronen | <pre> |
43 | 5 | Timo Eronen | ssh titan.utu.fi |
44 | 1 | Timo Eronen | cd ~/.ssh/ |
45 | 1 | Timo Eronen | </pre> |
46 | 1 | Timo Eronen | |
47 | 10 | Timo Eronen | h3. 6) Depending on whether you already have file named *authorized_keys* continue with either *Option 6a* or *Option 6b*. |
48 | 1 | Timo Eronen | |
49 | 10 | Timo Eronen | *Option 6a*) If you have file named *authorized_keys* add contents of id_rsa_titan.pub at the end of *authorized_keys* |
50 | 6 | Timo Eronen | |
51 | 1 | Timo Eronen | <pre> |
52 | 1 | Timo Eronen | cat ../id_rsa_titan.pub >> ./authorized_keys |
53 | 1 | Timo Eronen | </pre> |
54 | 1 | Timo Eronen | |
55 | 6 | Timo Eronen | Now you can get rid of file ../id_rsa_titan.pub |
56 | 6 | Timo Eronen | |
57 | 6 | Timo Eronen | <pre> |
58 | 1 | Timo Eronen | rm ../id_rsa_titan.pub |
59 | 1 | Timo Eronen | </pre> |
60 | 6 | Timo Eronen | |
61 | 10 | Timo Eronen | *Option 6b*) If you don't have file named *authorized_keys* rename id_rsa_titan.pub to *authorized_keys* and move it: |
62 | 1 | Timo Eronen | |
63 | 1 | Timo Eronen | <pre> |
64 | 1 | Timo Eronen | mv ../id_rsa_titan.pub ./authorized_keys |
65 | 1 | Timo Eronen | </pre> |
66 | 1 | Timo Eronen | |
67 | 10 | Timo Eronen | h3. 7) Logout from titan.utu.fi |
68 | 1 | Timo Eronen | |
69 | 10 | Timo Eronen | h3. 8) Edit your local config file in your personal computer in directory *~/.ssh* |
70 | 1 | Timo Eronen | |
71 | 1 | Timo Eronen | <pre> |
72 | 1 | Timo Eronen | emacs config |
73 | 1 | Timo Eronen | </pre> |
74 | 1 | Timo Eronen | |
75 | 1 | Timo Eronen | ... and add the following lines: |
76 | 1 | Timo Eronen | |
77 | 1 | Timo Eronen | <pre> |
78 | 1 | Timo Eronen | Host titan |
79 | 1 | Timo Eronen | User YOUR_USERID |
80 | 1 | Timo Eronen | HostName titan.utu.fi |
81 | 1 | Timo Eronen | IdentityFile ~/.ssh/id_rsa_titan |
82 | 1 | Timo Eronen | </pre> |
83 | 1 | Timo Eronen | |
84 | 1 | Timo Eronen | Replace YOUR_USERID with your user id in titan. |
85 | 1 | Timo Eronen | |
86 | 1 | Timo Eronen | You setup is done now and you should be able to login: |
87 | 1 | Timo Eronen | |
88 | 1 | Timo Eronen | <pre> |
89 | 1 | Timo Eronen | ssh titan |
90 | 1 | Timo Eronen | </pre> |