$ ssh-keygen -t rsa -f identity
Generating public/private rsa key pair.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in identity.
Your public key has been saved in identity.pub.
The key fingerprint is:
be:fe:1b:cc:ec:21:6b:d5:4d:db:75:00:99:92:8f:2d sss@server1
$ ls -l
total 16
-rw------- 1 sss staff 1675 Dec 05 13:21 identity
-rw-r--r-- 1 sss staff 397 Dec 05 13:21 identity.pub
$ ls -l
total 16
-rw------- 1 sss staff 1675 Dec 05 13:21 identity
-rw-r--r-- 1 sss staff 397 Dec 05 13:21 identity.pub
after run the command:
$ ssh-keygen -t rsa -f identity
where the "$HOME/.ssh/authorized_keys"? In Windows or AIX?
I want to ssh without password from windows to AIX. So, I create the private/public key on AIX side?
create public and private key on AIX - just as you have.
add the public key to $HOME/.ssh/authorized_keys on the AIX box.
ensure the keys and authorized_keys are -rw-------
transfer the private key to windows - just like you have
use puttygen to create a putty type key identity.ppk - just like you have
So you are nearly there, but the server does *nothing* with identity and identity.pub, they are ignored. It is only interested in $HOME/.ssh/authorized_keys. Similarly the ssh client on AIX is only interested in (a) $HOME/.ssh/identity and (b) $HOME/.ssh/known_hosts.
If $HOME/.ssh/authorized_keys does not exist then
cd .ssh
cp identity.pub authorized_keys
chmod 600 authorized_keys
Standardise on one public/private key pair that represents you as a person, then put the public key in the authorized_keys for all the servers you want to talk to, and put the private key in the identity in .ssh in your home directory on each server. That way you will happily be able to scp/ssh from any machine to any other machine. Of course, only put the private key on machines you trust.