SSH keys are not working

Afi_Linux · October 8, 2010, 3:11pm

Hi,

I've generated and posted pub. keys in the source system and the target. However, it is still prompting me for the password.

Steps that I have taken.

Generated ssh keys : ssh-keygen. It created two files.
1. .ssh/id_rsa
2. .ssh/id_rsa.pub.
I have scp .ssh/id_rsa.pub over to target user's .ssh folder and renames to authorized_keys.

When I'm trying to do ssh to target server/user, it is still prompting me for the pass.

Any idea why?

Corona688 · October 8, 2010, 3:42pm

Try ssh -v or even -vv or -vvv to see what it thinks it's doing. I suspect it's either a different protocol version of ssh or the permissions of one of the files are wrong...

mark54g · October 8, 2010, 4:20pm

Try this command:

ssh-copy-id <hostname or IP>

Afi_Linux · October 8, 2010, 5:55pm

Here is the result for ssh-copy-id <hostname>

/usr/bin/ssh-copy-id: ERROR: No identities found

ssh -v or ssh -vv/vvv does not recognize.

Corona688 · October 8, 2010, 5:59pm

Then you don't have the files in the correct location(/home/username/.ssh/), or incorrectly named, or the wrong kind of file(Try making a DSA key instead), or incorrect ownership and/or permissions on ~/.ssh/ or the files themselves. ls -l ~/.ssh/

You are running ssh -v username@host, yes? not just -v.

gutherzig · December 21, 2010, 9:05am

First of all, make sure you already generate your rsa key by doing this :
ssh-keygen

and then do these 2 steps:
cd ~
ssh-copy-id .ssh/id_rsa.pub user@target-host

or these 3 steps:
ssh-agent $SHELL
ssh-add
ssh-copy-id user@target-host

in case you still need it

maverick_here · December 25, 2010, 8:59pm

I have been there.Please check the permissions on the directory ( probably home of user for whom you have generated keys) it has to be 700 and authorized_keys has to be 640.So if we are doing it for user xyz

Then

700 /home/xyz
700 /home/xyz/.ssh
640 /home/xyz/.ssh/authorized_keys

swatt · December 26, 2010, 1:35pm

try doing this at the client side...
chmod 777 .ssh/authorized_keys

Scott · December 26, 2010, 3:01pm

Permissions "400" is enough for the authorized_keys file. Also important is the permissions on the .ssh directory itself, for which "100" would likely be enough.

Corona688 · December 26, 2010, 3:35pm

777 is not the magic sledgehammer that solves everything. Do you really want the world to be able to modify that file?

ssh can be very picky about the permissions it will accept. too permissive and it considers it insecure and won't go...

linux_land · December 27, 2010, 8:17pm

you can use this command

ssh-copy-id -i /path/of/public/key username@Hostname

and the will ask you about password , and then will transfer the key