Chapter 15: Advanced Configuration

MasterLES1102A

 

Slave

 

Slave

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

LES1102A

 

 

LES1101A

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

authorized_key

 

id_rsa

 

 

 

 

 

ssh-rsa

---BEGIN RSA

 

 

authorized_key

AAAAB3NzaC1yC2Efg4+t

PRIVATE KEY----

 

 

GHIAAA==name@client1

MIBogIDAAKCAQEA

ssh-rsa

 

 

yIPGsNf5+aOLnPUMc

AAAAB3NzaC1yC2Efg4+t

 

 

nujXXPGIQGyD3b79

GHIAAA==name@client1

KZg3UZMjZI525sCy

Opv4TjTvTK6a7QIYt

GYTByUdl

id_rsa.pub

ssh-rsa AAAAB3NzaC1yc2Efg4+tGHIAAA==name@client1

Figure 15-1.

If the Black Box device selected to be the server will only have one client device, then the authorized_keys file is simply a copy of the public key for that device. If one or more devices will be clients of the server, then the authorized_keys file will contain a copy of all of the public keys. RSA and DSA keys may be freely mixed in the authorized_keys file. For example, assume we already have one server, called bridge_server, and two sets of keys, for the control_room and the plant_entrance:

$ls /home/user/keys control_room control_room.pub plant_entrance plant_entrance.pub $ cat /home/user/keys/control_room.pub /home/user/keys/plant_entrance.pub > /home/user/keys/authorized_keys_bridge_server

Master

LES1102A

id_dsa

-----BEGIN DSA

PRIVATE KEY----

MIIBugBAAKBgQCR kixjJ0SKuiREXTM xDPFp9HqBvEg7Ww9 oynY4QNiXj1YU7T 871TLQiAhn3yp72Wy 7Z5C3sLF8o46Go

ssh-dsa AAAAB3NzaZr+OV01C8gdgz XDg==name@client2

 

 

Master

 

 

 

 

 

 

 

 

 

 

 

 

LES1102A

 

 

 

 

 

 

 

 

 

id_rsa

LES1102A

 

 

 

-----BEGIN DSA

 

 

PRIVATE KEY----

 

 

 

 

MIIEogIBAAKCAQEA

 

 

yIPGsNf5+a0LnPUMc

 

 

nujXXPGiQGyD3b79

 

 

KZf3UZ4MjZI525sCy

 

 

Opv4TjTvTK6e8QIYt

 

 

GYTByUdI

ssh-rsa AAAAB3NzaC1yc2Efg4+tG HIAAA==name@client1

authorized_keys ssh-rsa AAAAB3NzaC1yc2Efg4+IGHI ssh-dss AAAAB3NzaZr+OV01C8gdgz XDg==name@client2

Figure 15-2.

More documentation on OpenSSH can be found at:

http://openssh.org/portable.html

724-746-5500 blackbox.com

149

Page 149
Image 149
Black Box 1101, Secure Device Servers, 1102 manual Http//openssh.org/portable.html