[acg] ssh keys for RHEL 9
Anthony Cuffe
cuffe at jlab.org
Fri Feb 17 19:56:36 EST 2023
If you do re-generate your ssh keys, please email me that you did this so that I can update the alarms and batman keys that allow the iam alarms and iam batman work. Thanks.
Thanks,
Anthony
From: Anthony Cuffe
Sent: Friday, January 27, 2023 3:10 PM
To: acg at jlab.org
Subject: ssh keys for RHEL 9
Developers,
In beginning to migrate to RHEL 9, you may find that when you try to ssh to a RHEL 9 system you get complaints about your ssh key or the key length. This is due to your key being created many years ago and RHEL 9 being a bit more restrictive. If you run into problems, you can run the restore_default_ssh script to backup and recreate your .ssh keys with newer and larger key-length. This script can be executed (it will ask you for confirmation) from the command line or from the "restore utility" from Jmenu.
>From any linux system, execute the script which is in your path:
restore_default_ssh
Example:
[cuffe at devl07 ~]$ restore_default_ssh
This script backs up your .ssh directory and recreates it
with and rsa key of length 4096 and adds it to authorized_keys.
Please restore any needed items from the backup copy:
/usr/csmuser/cuffe/.ssh.20230127150752
Continue with setup [Y|y]?
y
Generating public/private rsa key pair.
Your identification has been saved in /usr/csmuser/cuffe/.ssh/id_rsa
Your public key has been saved in /usr/csmuser/cuffe/.ssh/id_rsa.pub
The key fingerprint is:
SHA256:FauQm/p3SLUlTFSexfkhNPmjqNBd5gk5LqdOAykFxrg cuffe at devl07
The key's randomart image is:
+---[RSA 2048]----+
| oo .o.o+o. |
| ..... .+ =+. |
| . o. oo + o..|
| E .+.o++.o o.|
| .ooS.o+B o .|
| ...oo.= + |
| . ..+= |
| . +oo |
| ...o |
+----[SHA256]-----+
Script complete.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.jlab.org/pipermail/acg/attachments/20230218/be4e530d/attachment.html>
More information about the acg
mailing list