Difference between revisions of "HowTo BackupPC SSH Key Authentication Setup For rsync Transfer"
From NST Wiki
Jump to navigationJump to search (→Step 2: Generate RSA Key Pairs) |
(→Step 2: Generate RSA Key Pairs) |
||
Line 46: | Line 46: | ||
Next we will generate a '''[https://en.wikipedia.org/wiki/RSA_(cryptosystem) RSA]''' public / private key pair in directory: "'''var/lib/BackupPC/.ssh'''". | Next we will generate a '''[https://en.wikipedia.org/wiki/RSA_(cryptosystem) RSA]''' public / private key pair in directory: "'''var/lib/BackupPC/.ssh'''". | ||
− | + | ||
+ | |||
+ | <div class="screen"> | ||
+ | <div class="userInput"><span class="prompt">[root@nst-vm ~]# </span>ssh-keygen -t rsa;</div> | ||
+ | <pre class="computerOutput"> | ||
+ | Generating public/private rsa key pair. | ||
+ | Enter file in which to save the key (/var/lib/BackupPC/.ssh/id_rsa): | ||
+ | Created directory '/var/lib/BackupPC/.ssh'. | ||
+ | Enter passphrase (empty for no passphrase): | ||
+ | Enter same passphrase again: | ||
+ | Your identification has been saved in /var/lib/BackupPC/.ssh/id_rsa. | ||
+ | Your public key has been saved in /var/lib/BackupPC/.ssh/id_rsa.pub. | ||
+ | The key fingerprint is: | ||
+ | SHA256:/+jTXY+lDGyAKkjitGZvfSweE8zE/ILpxt00OtaSNPs backuppc@nst26-mp | ||
+ | The key's randomart image is: | ||
+ | +---[RSA 2048]----+ | ||
+ | | | | ||
+ | | o | | ||
+ | | + . | | ||
+ | |... * . . . | | ||
+ | |oo.+ B =S o | | ||
+ | | =+ + % .. + o| | ||
+ | |o .+.%.o .o + =.| | ||
+ | | .o.o*o .o. = .| | ||
+ | | . ..oE .o.. | | ||
+ | +----[SHA256]-----+ | ||
+ | </pre> | ||
+ | <div class="userInput"><span class="prompt">[backuppc@nst-vm ~]$ </span></div> | ||
+ | </div> | ||
+ | |||
+ | |||
+ | |||
+ | |||
ssh root@10.222.222.107 | ssh root@10.222.222.107 |
Revision as of 10:28, 14 September 2017
Contents
Overview
This page provides a reference for how to setup SSH key-based authentication for BackupPC rsync file transfer backups with NST. Additional information can be found here: BackupPC SSH Setup.
NST BackupPC Client Setup Example For SSH Key-based Authentication
The steps shown below for SSH key-based authentication assumes that the BackupPC user is set to: "backuppc" and the file transfer backup method is: "rsync". The configuration entries from the main BackupPC configuration file: "/etc/BackupPC/config.pl" are shown for these settings.
. . . # # The BackupPC user. # $Conf{BackupPCUser} = 'backuppc'; . . . # # What transport method to use to backup each host. If you have # a mixed set of WinXX and linux/unix hosts you will need to override # this in the per-PC config.pl. # $Conf{XferMethod} = "rsync"; . . .
Step 1: Log In To The backuppc User Account
Since the backuppc user has no login capability, we will need to run the following for access to the backuppc user home directory: "/var/lib/BackupPC" as the backuppc user.
[root@nst-vm ~]# su - backuppc -s /bin/bash;
[backuppc@nst-vm ~]$ pwd;
/var/lib/BackupPC
[backuppc@nst-vm ~]$
Step 2: Generate RSA Key Pairs
Next we will generate a RSA public / private key pair in directory: "var/lib/BackupPC/.ssh".
[root@nst-vm ~]# ssh-keygen -t rsa;
Generating public/private rsa key pair. Enter file in which to save the key (/var/lib/BackupPC/.ssh/id_rsa): Created directory '/var/lib/BackupPC/.ssh'. Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /var/lib/BackupPC/.ssh/id_rsa. Your public key has been saved in /var/lib/BackupPC/.ssh/id_rsa.pub. The key fingerprint is: SHA256:/+jTXY+lDGyAKkjitGZvfSweE8zE/ILpxt00OtaSNPs backuppc@nst26-mp The key's randomart image is: +---[RSA 2048]----+ | | | o | | + . | |... * . . . | |oo.+ B =S o | | =+ + % .. + o| |o .+.%.o .o + =.| | .o.o*o .o. = .| | . ..oE .o.. | +----[SHA256]-----+
[backuppc@nst-vm ~]$
ssh root@10.222.222.107
ssh root@10.222.222.107 install -m 700 -d .ssh
cat id_rsa.pub | ssh root@10.222.222.107 tee -a .ssh/authorized_keys