Re: Need a tutorial
tomas@tuxteam.de:
> On Wed, Sep 21, 2016 at 10:18:55AM -0400, Gene Heskett wrote:
>> Greetings all, Dr Klepp in particular;
>
>> Where can I get a tut on doing the ssh keyfile login, and where can I
>> find a tutorial that is essentialy what Dr. Klepp had me do about a year
>> back that made these 3 commands in my rc.local file Just Work:
>
> Basically:
>
> 1. you need a keypair. Unless you have it already, you generate one
> with ssh-keygen. There, you have the choice to let it use the default
> file name (typically, ~/.ssh/id_rsa and ~/.ssh/id_rsa.pub or similar,
> depending on the key type) and whether you want the private key
> protected by a passphrase (recommended, but you have to unlock it
> either with ssh-add or whatever mechanism your desktop environment
> has for you).
>
> 2. you copy the public part to the ~/.ssh/authorized_keys of the server's
> user you want to log into -- there's the handy "ssh-copy-id" for that.
> From the client
>
> ssh-add # if not done already
> ssh-copy-id user@server # enter for one last time user's password there
>
> This is the bird's view. Ask if you get stuck.
>
Sorry, Tomas, it's not Gene, it's me who has a special question
concerning ssh.
If you create a new user account ("test"), doing as root
adduser --disabled-password test
How can you access this new account to generate an ssh key pair there?
I cannot login to the account selecting "test" as user in the login
screen on system startup, it's deactivated.
I cannot try accessing it by ssh because I need to generate a key pair
first. Could one generate a key pair for "test" from another account?
If I try
ssh test@localhost
ssh: connect to host localhost port 22: Connection refused
or, temporary enabling password authentication for a moment in
sshd_config, it prompts for a password (that has never been created
because of the --disabled-password option, see above).
Or, what am I missing?
Thanks in advance.
Stephan
I also read the doc you linked to in your other message of this thread,
but I cannot find my use case.
Reply to: