SSH requires that the key be readable __ONLY__ by the owner of the file which must be the id using the key file. Simply duplicate the key file on the remote server by giving everybody their own copy in their ~/.ssh subdirectory. ~ is UNIX for "home directory" and is usually something like /u/myid or /home/myid where "myid" is the user's id on that machine. And do the same on the z/OS system: duplicate the key file. Don't know why you'd want to do that, but feel free. I wouldn't allow it. If the auditor's find out, they may hit the roof because it is like insisting that all users have the same password. I can use my key file to access the remote system using the other person's id. Unwise.
-- John McKown Systems Engineer IV IT Administrative Services Group HealthMarkets(r) 9151 Boulevard 26 * N. Richland Hills * TX 76010 (817) 255-3225 phone * john.mck...@healthmarkets.com * www.HealthMarkets.com Confidentiality Notice: This e-mail message may contain confidential or proprietary information. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. HealthMarkets(r) is the brand name for products underwritten and issued by the insurance subsidiaries of HealthMarkets, Inc. -The Chesapeake Life Insurance Company(r), Mid-West National Life Insurance Company of TennesseeSM and The MEGA Life and Health Insurance Company.SM > -----Original Message----- > From: IBM Mainframe Discussion List > [mailto:IBM-MAIN@bama.ua.edu] On Behalf Of Mark Steely > Sent: Wednesday, July 27, 2011 1:22 PM > To: IBM-MAIN@bama.ua.edu > Subject: z/os SSH question > > I have trouble gaining access to MVS-OE so I will ask the > question here: > > I am trying to SSH to a Unix server. I have generated the > keys and have successfully connected and transfer files from > and to the server. The question is how can I have other z/os > customers use the same RSA key. When I change the permission > to read the file I receive message : permission 0664 for > id_rsa are too open. Does everyone need a copy of the RSA in > a directory they can only access. > Any help would be appreciated. > > Thanks > > > > ******* CONFIDENTIALITY NOTICE ******* > This e-mail message and all attachments transmitted with it may > contain legally privileged and confidential information intended > solely for the use of the addressee. If the reader of this message > is not the intended recipient, you are hereby notified that any > reading, dissemination, distribution, copying, or other use of this > message or its attachments is strictly prohibited. If you have > received this message in error, please notify the sender > immediately and delete this message from your system. Thank you. > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO > Search the archives at http://bama.ua.edu/archives/ibm-main.html > > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
