This is an old revision of the document!
SSH Usage on CEP
We use the Secure Shell (ssh) on CEP to connect to different systems. This page explains how this can be used without having to supply a password each time you want to connect to a system.
Generating keys
Linux or OS X
The first thing you need to do is generate an authorisation key using the DSA algorithm, which means you need to do the following once:
ssh-keygen -tdsa cp .ssh/id_dsa.pub .ssh/authorized_keys
Use cat or some editor if authorized keys already exists and can't be simply copied. Copy your .ssh/authorized_keys to each $HOME of a system you want access to. Please make sure you use a passphrase to encrypt your private key, to prevent easy access. When using the instructions below on the ssh-agent, you'll only have to provide it once each time you use the systems.
Windows
TBD probably requires an explanation on installing Putty
Using an SSH-Agent
An ssh-agent is a small program that when you start work is used to unlock the passphrase protected private key you generated above. The ssh-agent will from that point on automatically supply the right answers to any ssh session, if you use ssh -A
each time you connect to another system.
Detailed information on how to setup ssh agent forwarding can be found here and here.
Linux
To get the ssh-agent running, you will need to execute these commands each time after you did a login:
csh
eval `ssh-agent` ssh-add
bash
ssh-agent ssh-add
OS X
Install SSH Agent 1.1 and set it to Open at Login or use the same commands as on Linux.
Windows
Use Pagent provided by Putty
- TBD