On Sun, May 15, 2011 at 06:28:12PM +0530, ashwin kesavan wrote: > I work on atleast 20 to 40 machines daily. My authentication is > through LDAP. My laptop i use is windows xp and i use putty to login. > I have a desktop also which is rhel 5.4 32 bit. Now this 20 to 40 > machiines is not entirly same machine of this atleast 15 of them will > be a new machine in some dc around the globe. i want to do Private > -Public key login , instead of thorugh typing the password everytime. > because file based authentication is more secure and easy. This > private key file should not be passwordless. i want to do passphrase > protected. As any body with access to my desktop or laptop can missue > my account to wreck havoc in DC. Though it is highly unlikely that is > possible. But i dont want to take chances. Now i want to do automatic > ssh into these machines. I tried keychain , which is says it can do > that. I dont mind keying in the passphrase couple of times a day of > work. But keychain requires i copy the public key file into every > machine i login into and every machine i login. If there any other way
1. To copy keys easily once, ssh-copy-id is your friend. For instance, if you have a text file list out the various machines you ssh into, you could run a for-loop with ssh-copy-id to copy the keys. 2. gpg-agent can prevent having to repeatedly enter password. > to do passwordless ssh without needing manually copy the pub key into > each machine. Since the central ldap server already has all the > machine details, is it possible to do it from the central server. I > dont have control over the central ldap server, but i can talk to the > person holding the central server to do if i have substantial > information. Also how do i enable automatic login from windows to > linux through putty.I mean from from my laptop to desktop. here > copying the keys is ok. Since it is a one time effort. My point is how > to generate the keys in windows. Also if i use the same key pair in > linux as well as windows that would spare some effort in windows. puttygen? OpenSSH with Cygwin? HTH. Kumar -- : ####[ GNU/Linux One Stanza Tip (LOST) ]####################### Sub : Searching for files (#1) LOST #171 To search for files that match a particular name, use find(1); for example : find / -name "*GENERIC*" -ls will search '/', and all subdirs, for files with 'GENERIC' in the name. ####[nospam (at) hiltonbsd.com]############################### : _______________________________________________ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
