diff options
| author | rebortg <github@ghlr.de> | 2022-03-24 20:32:07 +0100 |
|---|---|---|
| committer | rebortg <github@ghlr.de> | 2022-03-24 20:32:07 +0100 |
| commit | db42af861e7d3b46606f8da089a35fb11515313c (patch) | |
| tree | 761254502d0f3093d5eab1eaf67bb7b67506197a /docs/configuration | |
| parent | 4ddcd64367da744c328ecd1ceb8f6055bfeca8a5 (diff) | |
| parent | 80dac2f234861b8605a52d06734e8b9a74e387e0 (diff) | |
| download | vyos-documentation-db42af861e7d3b46606f8da089a35fb11515313c.tar.gz vyos-documentation-db42af861e7d3b46606f8da089a35fb11515313c.zip | |
Merge branch 'equuleus' of github.com:vyos/vyos-documentation into equuleus
Diffstat (limited to 'docs/configuration')
| -rw-r--r-- | docs/configuration/service/ssh.rst | 37 | ||||
| -rw-r--r-- | docs/configuration/system/login.rst | 4 |
2 files changed, 38 insertions, 3 deletions
diff --git a/docs/configuration/service/ssh.rst b/docs/configuration/service/ssh.rst index 24881186..e03d1e70 100644 --- a/docs/configuration/service/ssh.rst +++ b/docs/configuration/service/ssh.rst @@ -127,8 +127,8 @@ Operation .. opcmd:: generate ssh client-key /path/to/private_key - Re-generated a known pub/private keyfile which can e.g. used to connect to - other services (RPKI cache). + Re-generated a known pub/private keyfile which can be used to connect to + other services (e.g. RPKI cache). Example: @@ -153,5 +153,36 @@ Operation | =.. o=.oo| +----[SHA256]-----+ - Two new files ``/config/auth/id_rsa_rpki`` and ``/config/auth/id_rsa_rpki.pub`` + Two new files ``/config/auth/id_rsa_rpki`` and + ``/config/auth/id_rsa_rpki.pub`` will be created. + +.. opcmd:: generate public-key-command name <username> path <location> + + Generate the configuration mode commands to add a public key for + :ref:`ssh_key_based_authentication`. + ``<location>`` can be a local path or a URL pointing at a remote file. + + Supported remote protocols are FTP, FTPS, HTTP, HTTPS, SCP/SFTP and TFTP. + + Example: + + .. code-block:: none + + alyssa@vyos:~$ generate public-key-command name alyssa path sftp://example.net/home/alyssa/.ssh/id_rsa.pub + # To add this key as an embedded key, run the following commands: + configure + set system login user alyssa authentication public-keys alyssa@example.net key AAA... + set system login user alyssa authentication public-keys alyssa@example.net type ssh-rsa + commit + save + exit + + ben@vyos:~$ generate public-key-command user ben path ~/.ssh/id_rsa.pub + # To add this key as an embedded key, run the following commands: + configure + set system login user ben authentication public-keys ben@vyos key AAA... + set system login user ben authentication public-keys ben@vyos type ssh-dss + commit + save + exit diff --git a/docs/configuration/system/login.rst b/docs/configuration/system/login.rst index 61201de7..08746201 100644 --- a/docs/configuration/system/login.rst +++ b/docs/configuration/system/login.rst @@ -84,6 +84,10 @@ The third part is simply an identifier, and is for your own reference. .. cfgcmd:: loadkey <username> <location> + **Deprecation notice:** ``loadkey`` has been deprecated in favour of + :opcmd:`generate public-key-commands` and will be removed in a future + version. See :ref:`ssh`. + SSH keys can not only be specified on the command-line but also loaded for a given user with `<username>` from a file pointed to by `<location>.` Keys can be either loaded from local filesystem or any given remote location |