infix icon indicating copy to clipboard operation
infix copied to clipboard
verified publisher icon kernelkit

Verify SSH public key authentication

Open troglobit opened this issue 1 year ago • 0 comments

Main Test

  • Create a new private/public key pair using ssh-keygen, e.g., ssh-keygen -f /tmp/foobar -N ""
  • Verify user can fetch data using only the public key, either:
    • NETCONF data, e.g., operational status
    • /var/log/syslog

Optional

  • Create a new user guest, do not set a password
  • For the section authorized-key, extract the relevant portions of the public key:
    • for algorithm option, extract first part of the public key, e.g., ssh-rsa
    • for key-data option, extract the middle part of the public key
  • Add the new user to an NACM group that has access to read something (limited) from the system

troglobit avatar Feb 14 '24 07:02 troglobit