Connector GuidesConnectors GuideConnecting to EndpointsKerberos ConnectorKerberos Installation and DeploymentInstall and Deploy the ConnectorHow to Set Up SSH Permissions for the Kerberos Connector › Generate an RSA Key Pair Using ssh-keygen

Previous Topic: How to Set Up SSH Permissions for the Kerberos Connector

Next Topic: Generate an RSA Key Pair Using puttygen

Generate an RSA Key Pair Using ssh-keygen

To use the connector on a Java CS host that is on Solaris 10 and not a member of the realm, use ssh-keygen to generate the key pair on the Java CS host.

To generate an RSA key pair using ssh-keygen

  1. On the Java CS host, enter the following command: 
    Ssh-keygen -b 1024 -t rsa
  2. When prompted, specify the file that you want to save the key in. For example, .ssh/sample.
  3. When prompted, enter and confirm the passphrase.

    The RSA key pair is generated and the public key is created. For example, if you saved the key in .ssh/sample, the public key is created in .ssh/sample.pub, and the private key in .ssh/sample.

  4. In the home directory of account used by the connector to log in to the SSH Server host, create a directory named .ssh
  5. Copy the public key file to the SSH Server host.
  6. Verify that the .ssh/authorized_keys file in the home directory of the account that the connector use to log in exists, then do one of the following:
  7. Copy the public key file to the SSH Server host.
  8. On the Java CS Server host, copy the private key file to a directory that the Java CS has access to.
  9. If you want to manage a Kerberos endpoint using a Windows Java CS rather than a Kerberos Java CS, use etautil to assign the private key filename (with absolute or relative path) to eTKRBSSHPrivateKeyFile.