How do I configure Public Key authentication?

How do I configure Public Key authentication?

Public Key authentication is not to be confused with PKI. There is not Infrastructure here and no certificates either. Still it can be a useful technique.

To use Public Key authentication the user must have a permanent Unix account on the AppGate server. There is a check box in the account config dialog to make the account a Unix account.

You must then generate a Public Key pair. One way of doing this to login to the AppGate server as the user and use the Shell on AppGate to get a unix prompt. Run the command "ssh-keygen -t rsa". This will create a dir ".ssh" containing two files "id_rsa" and "id_rsa.pub". Copy the content of "id_rsa.pub" to a file named "authorized_keys" in the same dir. And make "chmod 600 authorized_keys". Then copy "id_rsa" to your client machine.

On the client side you should select Public Key as your authentication method. If you are using the AppGate client you can select the id_rsa file in the "Open Connection"->"Properties" dialog, if you use a standard ssh client you will typically give it like: 

ssh -i id_rsa  user@appgate.server

If things does not work you can run the sshd deamon on the AppGate server in debug mode.

  1. Become root Run the command

  2. /opt/APPGserv/sbin/sshd -d -d -p 222
    You can add more -d if you want more verbose output.

     

  3. In the client change the port to 222 and connect.

 

Updated 2008-11-03 11:57 Copyright © 2002-2008 AppGate Network Security AB. All rights reserved.
Legal notice 		Contact AppGate Network Security
Comments to the webmaster