home | O'Reilly's CD bookshelfs | FreeBSD | Linux | Cisco | Cisco Exam  

Book HomeSSH, The Secure ShellSearch this book
PreviousNext

15.3. Key Management

SecureCRT supports public-key authentication using RSA keys. It can generate keys with a built-in wizard or use existing SSH-1 and SSH-2 keys. It also distinguishes between two different types of SSH identities: global and session-specific.

15.3.1. RSA Key Generation Wizard

SecureCRT's RSA Key Generation Wizard creates key pairs for public-key authentication. The utility is run from the Session Options window, by clicking the Advanced button, the General tab, and then Create Identity File.

Operation is straightforward. All you need to supply is the passphrase, the number of bits in the key, and some random data by moving your mouse around the screen. RSA Key Generation Wizard then creates a key pair and stores it in two files. As with the Unix SSH implementations, the private key filename is anything you choose, and its corresponding public key filename is the same with .pub added.

Once your key pair is generated, you need to copy the public key to the SSH server machine, storing it in your account's authorization file. To accomplish this:

  1. Log into to the SSH server machine using SecureCRT and password authentication.

  2. View the public key file and copy the full text of the key to the Windows clipboard.

  3. Install the public key (by pasting from the clipboard as necessary) on the SSH server machine in your remote account. [Section 2.4.3, "Installing a Public Key on an SSH ServerMachine"]

  4. Log out.

  5. In the Session Options window, select Connection, and change Authentication from Password to RSA.

  6. Log in again. SecureCRT prompts you for your public key passphrase, and you'll be logged in.

15.3.2. Using Multiple Identities

SecureCRT supports two types of SSH identities. Your global identity is the default for all SecureCRT sessions. You may override the default by using a session-specific identity that may differ (as the name implies) for each session you define.

In the Session Options window, click the Advanced button and the General tab. Under Identity Filename, you may select global and session-specific key files.

PreviousHomeNext
15.2. Basic Client UseBook Index15.4. Advanced Client Use
Library Navigation Links

Copyright © 2002 O'Reilly & Associates. All rights reserved.