HowTo BackupPC SSH Key Authentication Setup For rsync Transfer: Difference between revisions
From MediaWiki
Jump to navigationJump to search
| Line 46: | Line 46: | ||
Next we will generate a '''[https://en.wikipedia.org/wiki/RSA_(cryptosystem) RSA]''' public / private key pair in directory: "'''var/lib/BackupPC/.ssh'''". | Next we will generate a '''[https://en.wikipedia.org/wiki/RSA_(cryptosystem) RSA]''' public / private key pair in directory: "'''var/lib/BackupPC/.ssh'''". | ||
<div class="screen"> | |||
<div class="userInput"><span class="prompt">[root@nst-vm ~]# </span>ssh-keygen -t rsa;</div> | |||
<pre class="computerOutput"> | |||
Generating public/private rsa key pair. | |||
Enter file in which to save the key (/var/lib/BackupPC/.ssh/id_rsa): | |||
Created directory '/var/lib/BackupPC/.ssh'. | |||
Enter passphrase (empty for no passphrase): | |||
Enter same passphrase again: | |||
Your identification has been saved in /var/lib/BackupPC/.ssh/id_rsa. | |||
Your public key has been saved in /var/lib/BackupPC/.ssh/id_rsa.pub. | |||
The key fingerprint is: | |||
SHA256:/+jTXY+lDGyAKkjitGZvfSweE8zE/ILpxt00OtaSNPs backuppc@nst26-mp | |||
The key's randomart image is: | |||
+---[RSA 2048]----+ | |||
| | | |||
| o | | |||
| + . | | |||
|... * . . . | | |||
|oo.+ B =S o | | |||
| =+ + % .. + o| | |||
|o .+.%.o .o + =.| | |||
| .o.o*o .o. = .| | |||
| . ..oE .o.. | | |||
+----[SHA256]-----+ | |||
</pre> | |||
<div class="userInput"><span class="prompt">[backuppc@nst-vm ~]$ </span></div> | |||
</div> | |||
ssh root@10.222.222.107 | ssh root@10.222.222.107 | ||
Revision as of 10:28, 14 September 2017
Overview
This page provides a reference for how to setup SSH key-based authentication for BackupPC rsync file transfer backups with NST. Additional information can be found here: BackupPC SSH Setup.
NST BackupPC Client Setup Example For SSH Key-based Authentication
The steps shown below for SSH key-based authentication assumes that the BackupPC user is set to: "backuppc" and the file transfer backup method is: "rsync". The configuration entries from the main BackupPC configuration file: "/etc/BackupPC/config.pl" are shown for these settings.
.
.
.
#
# The BackupPC user.
#
$Conf{BackupPCUser} = 'backuppc';
.
.
.
#
# What transport method to use to backup each host. If you have
# a mixed set of WinXX and linux/unix hosts you will need to override
# this in the per-PC config.pl.
#
$Conf{XferMethod} = "rsync";
.
.
.
Step 1: Log In To The backuppc User Account
Since the backuppc user has no login capability, we will need to run the following for access to the backuppc user home directory: "/var/lib/BackupPC" as the backuppc user.
[root@nst-vm ~]# su - backuppc -s /bin/bash;
[backuppc@nst-vm ~]$ pwd;
/var/lib/BackupPC
[backuppc@nst-vm ~]$
Step 2: Generate RSA Key Pairs
Next we will generate a RSA public / private key pair in directory: "var/lib/BackupPC/.ssh".
[root@nst-vm ~]# ssh-keygen -t rsa;
Generating public/private rsa key pair. Enter file in which to save the key (/var/lib/BackupPC/.ssh/id_rsa): Created directory '/var/lib/BackupPC/.ssh'. Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /var/lib/BackupPC/.ssh/id_rsa. Your public key has been saved in /var/lib/BackupPC/.ssh/id_rsa.pub. The key fingerprint is: SHA256:/+jTXY+lDGyAKkjitGZvfSweE8zE/ILpxt00OtaSNPs backuppc@nst26-mp The key's randomart image is: +---[RSA 2048]----+ | | | o | | + . | |... * . . . | |oo.+ B =S o | | =+ + % .. + o| |o .+.%.o .o + =.| | .o.o*o .o. = .| | . ..oE .o.. | +----[SHA256]-----+
[backuppc@nst-vm ~]$
ssh root@10.222.222.107
ssh root@10.222.222.107 install -m 700 -d .ssh
cat id_rsa.pub | ssh root@10.222.222.107 tee -a .ssh/authorized_keys
