general:ssh
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
general:ssh [2023-05-24 11:56] – created Markus Rosenstihl | general:ssh [2023-12-08 11:38] (current) – Markus Rosenstihl | ||
---|---|---|---|
Line 1: | Line 1: | ||
====== SSH Access ====== | ====== SSH Access ====== | ||
- | You can make it easier accessing Linux systems when you use SSH keys, they are alos more secure and the recommended | + | You can make it easier accessing Linux systems when you use SSH keys, they are also MUCH more secure and the preferred |
+ | |||
+ | <WRAP center round important 60%> | ||
+ | HRZ will block SSH access from outside university somewhen in 2024! | ||
+ | Then you need to start VPN first. | ||
+ | </ | ||
You need to create first an SSH key and then add the **public** part in the '' | You need to create first an SSH key and then add the **public** part in the '' | ||
Line 7: | Line 12: | ||
Creating a new key is simple with [[https:// | Creating a new key is simple with [[https:// | ||
- | | + | |
This will create a private and public (default would be id_ed25519 and id_ed25519.pub, | This will create a private and public (default would be id_ed25519 and id_ed25519.pub, | ||
Line 14: | Line 19: | ||
There is a helper script on most Linux system to aid you with that: | There is a helper script on most Linux system to aid you with that: | ||
- | | + | |
| | ||
- | Choose a difficult and long passphrase, you do not have to type it often as most Linux have an ssh-agent setup. You only need to " | + | Choose a difficult and long passphrase, you do not have to type it often as most Linux systems |
+ | your local PC. From then on you can have password free logins to all systems where you added your SSH public key. | ||
+ | Access to your PC depends on your group: | ||
+ | |||
+ | * [[agdrossel: | ||
+ | * AG Vogel | ||
+ | * AG Liebchen | ||
+ | |||
+ | If you logout and login again, most desktop environments will ask you to provide the passphrase to unlock your key(s). | ||
+ | If not, you can unlock | ||
You can also " | You can also " | ||
Line 24: | Line 38: | ||
A nice tutorial from DigitalOcean can be found [[https:// | A nice tutorial from DigitalOcean can be found [[https:// | ||
+ | If you have lots of different systems you can make it easire by providing shortcuts in the '' | ||
+ | |||
+ | < | ||
+ | Host dix | ||
+ | Hostname dix.fkp.physik.tu-darmstadt.de | ||
+ | ForwardAgent yes | ||
+ | User KnechtRootrecht | ||
+ | IdentityFile ~/ | ||
+ | IdentitiesOnly yes | ||
+ | Host dax | ||
+ | Hostname dax.fkp.physik.tu-darmstadt.de | ||
+ | User otheruser | ||
+ | </ | ||
+ | |||
+ | |||
+ | If they agent is not working (ssh-add does not work) you can try to start it manually with: | ||
+ | |||
+ | eval ssh-agent $SHELL | ||
+ | |||
+ | Other solution would be [[https:// | ||
+ | |||
+ | Access depends on your group: | ||
+ | * [[agdrossel: | ||
+ | * [[agliebchen: | ||
+ | * AG Vogel | ||
general/ssh.1684922205.txt.gz · Last modified: 2023-05-24 09:16 (external edit)