Difference between revisions of "HowTo BackupPC SSH Key Authentication Setup For rsync Transfer"
From NST Wiki
Jump to navigationJump to search (→Step 2: Generate RSA Key Pairs) |
(→Step 2: Generate RSA Key Pairs) |
||
| Line 46: | Line 46: | ||
Next we will generate a '''[https://en.wikipedia.org/wiki/RSA_(cryptosystem) RSA]''' public / private key pair in directory: "'''var/lib/BackupPC/.ssh'''". | Next we will generate a '''[https://en.wikipedia.org/wiki/RSA_(cryptosystem) RSA]''' public / private key pair in directory: "'''var/lib/BackupPC/.ssh'''". | ||
| − | + | ||
| + | |||
| + | <div class="screen"> | ||
| + | <div class="userInput"><span class="prompt">[root@nst-vm ~]# </span>ssh-keygen -t rsa;</div> | ||
| + | <pre class="computerOutput"> | ||
| + | Generating public/private rsa key pair. | ||
| + | Enter file in which to save the key (/var/lib/BackupPC/.ssh/id_rsa): | ||
| + | Created directory '/var/lib/BackupPC/.ssh'. | ||
| + | Enter passphrase (empty for no passphrase): | ||
| + | Enter same passphrase again: | ||
| + | Your identification has been saved in /var/lib/BackupPC/.ssh/id_rsa. | ||
| + | Your public key has been saved in /var/lib/BackupPC/.ssh/id_rsa.pub. | ||
| + | The key fingerprint is: | ||
| + | SHA256:/+jTXY+lDGyAKkjitGZvfSweE8zE/ILpxt00OtaSNPs backuppc@nst26-mp | ||
| + | The key's randomart image is: | ||
| + | +---[RSA 2048]----+ | ||
| + | | | | ||
| + | | o | | ||
| + | | + . | | ||
| + | |... * . . . | | ||
| + | |oo.+ B =S o | | ||
| + | | =+ + % .. + o| | ||
| + | |o .+.%.o .o + =.| | ||
| + | | .o.o*o .o. = .| | ||
| + | | . ..oE .o.. | | ||
| + | +----[SHA256]-----+ | ||
| + | </pre> | ||
| + | <div class="userInput"><span class="prompt">[backuppc@nst-vm ~]$ </span></div> | ||
| + | </div> | ||
| + | |||
| + | |||
| + | |||
| + | |||
ssh root@10.222.222.107 | ssh root@10.222.222.107 | ||
Revision as of 10:28, 14 September 2017
Contents
Overview
This page provides a reference for how to setup SSH key-based authentication for BackupPC rsync file transfer backups with NST. Additional information can be found here: BackupPC SSH Setup.
NST BackupPC Client Setup Example For SSH Key-based Authentication
The steps shown below for SSH key-based authentication assumes that the BackupPC user is set to: "backuppc" and the file transfer backup method is: "rsync". The configuration entries from the main BackupPC configuration file: "/etc/BackupPC/config.pl" are shown for these settings.
.
.
.
#
# The BackupPC user.
#
$Conf{BackupPCUser} = 'backuppc';
.
.
.
#
# What transport method to use to backup each host. If you have
# a mixed set of WinXX and linux/unix hosts you will need to override
# this in the per-PC config.pl.
#
$Conf{XferMethod} = "rsync";
.
.
.
Step 1: Log In To The backuppc User Account
Since the backuppc user has no login capability, we will need to run the following for access to the backuppc user home directory: "/var/lib/BackupPC" as the backuppc user.
[root@nst-vm ~]# su - backuppc -s /bin/bash;
[backuppc@nst-vm ~]$ pwd;
/var/lib/BackupPC
[backuppc@nst-vm ~]$
Step 2: Generate RSA Key Pairs
Next we will generate a RSA public / private key pair in directory: "var/lib/BackupPC/.ssh".
[root@nst-vm ~]# ssh-keygen -t rsa;
Generating public/private rsa key pair. Enter file in which to save the key (/var/lib/BackupPC/.ssh/id_rsa): Created directory '/var/lib/BackupPC/.ssh'. Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /var/lib/BackupPC/.ssh/id_rsa. Your public key has been saved in /var/lib/BackupPC/.ssh/id_rsa.pub. The key fingerprint is: SHA256:/+jTXY+lDGyAKkjitGZvfSweE8zE/ILpxt00OtaSNPs backuppc@nst26-mp The key's randomart image is: +---[RSA 2048]----+ | | | o | | + . | |... * . . . | |oo.+ B =S o | | =+ + % .. + o| |o .+.%.o .o + =.| | .o.o*o .o. = .| | . ..oE .o.. | +----[SHA256]-----+
[backuppc@nst-vm ~]$
ssh root@10.222.222.107
ssh root@10.222.222.107 install -m 700 -d .ssh
cat id_rsa.pub | ssh root@10.222.222.107 tee -a .ssh/authorized_keys
