Using an SSH keyfile with root credentials

SUM allows you to log in with a password or by providing an SSH key.

Procedure

  1. On the node that is running SUM, type ssh-keygen -t rsa. SUM also supports DSA encryption key format. To create a DSA encryption key, type ssh-keygen -t dsa. A passphrase is optional.
  2. Save the key in the directory .ssh/id_rsa.pub. Root users, use the directory /root/.ssh.
  3. Verify that the private key is in PEM format by opening the key and viewing the top of the key for the following text:

    ---- BEGIN RSA PRIVATE KEY ----

  4. If necessary, on the node you want to update, create an .ssh directory at the root level. Set the permissions level on the directory to 700.
  5. Determine if the node you want to update has the filename .ssh/authorized_keys. If this file is not present, create or append this file. Set the permissions on the authorized_keys file to 640.
    NOTE:

    If you append the file, more users are authorized to use the private key.

  6. Copy the contents of .ssh/id_rsa.pub on the host node, and then paste them into the filename .ssh/authorized_keys on the remote node.
  7. Open an SSH path between the host node and the node you want to update.
    1. Type ssh root@10.0.0.1. This parameter opens a shell path.
    2. Type ssh root@10.0.0.1 uname. This parameter executes the command and returns.
  8. SUM requires access to id_rsa (private key file), and the optional passphrase.
    NOTE:

    If other applications require the public key in PEM format, you can convert it by typing ssh-keygen -e -f id_rsa.pub > id_rsa_pub.pem. Open the key, and look at the PEM format for ---- BEGIN SSH2 PUBLIC KEY ----.

To create a private key on a Windows system, you can use an application like PuTTY or PuTTY Key Generator (PuTTYGen). For more information, see https://www.digitalocean.com/community/tutorials/how-to-create-ssh-keys-with-putty-to-connect-to-a-vps.

To export the file to PEM format, select, Conversion > Export OpenSSH key.