|
Size: 2469
Comment:
|
Size: 3006
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 27: | Line 27: |
| Once you have your key ready, you must install it on the server you are going to access. === Using the authorized_keys file === You have to access (using SSH and your username and password) to the machine where you want to use your public key and add the contents of your public key file to the `.ssh/authorized_keys`. If you are using GNU/Linux, you can add it with the following command: {{{ $ ssh-copy-id username@gridui.ifca.es }}} This will install your ssh public key both infrastructures (Scientific Linux 5 and Scientific Linux 6). |
|
| Line 29: | Line 43: |
| Authentication at IFCA is centralized, meaning that you can install your key centrally at https://cerbero.ifca.es/ and use it when accessing any Scientific Linux 6 machines (that is, the new gridui cluster that can be accessed trough `griduisl6.ifca.es`. |
|
| Line 30: | Line 46: |
| Note that this method will only work for Scientific Linux 6 machines. | Note that this method will only work for Scientific Linux 6 machines (i.e. `griduisl6.ifca.es`). |
| Line 60: | Line 76: |
=== Using the authorized_keys file === Another alternative is to SSH to the machine where you want to use your public key and add the contents of your public key file to the `.ssh/authorized_keys` file. You can add it with the following command: {{{ $ ssh-copy-id username@gridui.ifca.es }}} |
SSH Key Management
SSH Keys is a way of identifying yourself to an SSH server using cryptography instead of the traditional username and password combination. This method has several advantages over the password based authentication: the passwords are not sent to trough the network, there is no risk for brute force attacks and when using together with the SSH agent it is possible to login to multiple servers without entering your credentials again and again.
At IFCA it is highly reccomended to use SSH Key authentication for accessing the Cluster.
We reccomend the reading of the fantastic Arch Linux SSH Keys guide for more details. Some instructions are provided below though.
1. SSH Key creation
1.1. Windows (PuTTY)
Check this page for more information.
1.2. Linux
Check this page for more information.
2. Upload key
Once you have your key ready, you must install it on the server you are going to access.
2.1. Using the authorized_keys file
You have to access (using SSH and your username and password) to the machine where you want to use your public key and add the contents of your public key file to the .ssh/authorized_keys. If you are using GNU/Linux, you can add it with the following command:
$ ssh-copy-id username@gridui.ifca.es
This will install your ssh public key both infrastructures (Scientific Linux 5 and Scientific Linux 6).
2.2. Using cerbero
Authentication at IFCA is centralized, meaning that you can install your key centrally at https://cerbero.ifca.es/ and use it when accessing any Scientific Linux 6 machines (that is, the new gridui cluster that can be accessed trough griduisl6.ifca.es.
Note that this method will only work for Scientific Linux 6 machines (i.e. griduisl6.ifca.es).
Login to https://cerbero.ifca.es
Click POSIX in order to edit your POSIX settings.
Click Edit button.
Click Edit public ssh keys... button.
From this screen you can manage the the public SSH keys that you have added to your account. You can have several keys (for example, one for the office PC, another, for your laptop, etc.). Click Browse to select the file of your public key and upload it to the server.
- Search the file containing your public key and upload it.
Click Upload and your public key will be added.
You're almost done, your key has been added. Click Save to accept the changes.
Click OK and now you will be able to login using your SSH key.
