Whilst reviewing access requirements at a number of sites, we’ve found the need to make several different implementations of SSH clients and servers interoperate succesfully.<\/p>\n
This document outlines how to convert keys between OpenSSH, SSH.com (F-Secure), Sun SSH, and PuTTY implementations, using a DSA key for our examples, and also illustrates basic server-side setup for key-based authentication.<\/p>\n
1) Convert key to correct format:<\/p>\n
OpenSSH\/Sun SSH – Use ssh-keygen<\/em> to export from native format to SECSH format:<\/p>\n *note that Sun requires the private key as an input, whereas OpenSSH can convert directly from a public key to SECSH format.<\/p>\n (PuTTY and SSH.com clients use the SECSH format natively, so no conversion required)<\/p>\n 2) Paste the SECSH file into a file of the same name on the server, located in the .ssh<\/em> directory of the user in question, or scp<\/em> using passwords:<\/p>\n 3) Create or amend the file ~user\/.ssh\/authorization<\/em> on the server to include information on the new key:<\/p>\n 4) DSA authentication should now be possible.<\/p>\n 1) Convert key to correct format:<\/p>\n PuTTY – Use the puttygen.exe<\/em> tool to import the SECSH-formatted file, and copy the OpenSSH-compatible data from the Key window.<\/p>\n SSH.com – Use either Sun’s or OpenSSH’s ssh-keygen<\/em> to convert from SECSH format:<\/p>\n 2) Paste the DSA key into ~user\/.ssh\/authorized_keys<\/em> on the server.<\/p>\n 3) DSA authentication should now be possible.<\/p>\n","protected":false},"excerpt":{"rendered":" Introduction <\/p>\n Whilst reviewing access requirements at a number of sites, we’ve found the need to make several different implementations of SSH clients and servers interoperate succesfully.<\/p>\n This document outlines how to convert keys between OpenSSH, SSH.com (F-Secure), Sun SSH, and PuTTY implementations, using a DSA key for our examples, and also illustrates basic server-side setup […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1732"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1732"}],"version-history":[{"count":2,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1732\/revisions"}],"predecessor-version":[{"id":1735,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1732\/revisions\/1735"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1732"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1732"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1732"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}ssh-keygen -e -f ~user\/.ssh\/id_dsa.pub > id_dsa_secsh.pub (OpenSSH)\r\n<\/pre>\n
ssh-keygen -x -f ~user\/.ssh\/id_dsa > id_dsa_secsh.pub (Sun SSH)\r\n<\/pre>\n
scp id_dsa_secsh.pub user@target:\/home\/user\/.ssh2\/id_dsa_secsh.pub\r\n<\/pre>\n
echo \"key id_dsa_secsh.pub\" >> ~user\/.ssh2\/authorization\r\n<\/pre>\n
Connect to OpenSSH and Sun SSH servers<\/h2>\n
ssh-keygen -i -f id_dsa_secsh.pub > id_dsa.pub (OpenSSH)\r\n<\/pre>\n
ssh-keygen -X -f id_dsa_secsh.pub > id_dsa.pub (Sun SSH)\r\n<\/pre>\n