How to perform SSH RSA User Authentication

The place for what's new and going on in the tech, innovation, and science world.

How to perform SSH RSA User Authentication

Postby Egaladeist » Fri Apr 06, 2012 4:01 am

Cisco IOS SSH Version 2 (SSHv2) supports keyboard-interactive and password-based authentication methods. The SSHv2 Enhancements for RSA Keys feature also supports RSA-based public key authentication for the client and the server.

RSA based user authentication uses a private/public key pair associated with each user for authentication. The user must generate a private/public key pair on the client and configure a public key on the Cisco IOS SSH server to complete the authentication.

An SSH user trying to establish the credentials provides an encrypted signature using the private key. The signature and the user’s public key are sent to the SSH server for authentication. The SSH server computes a hash over the public key provided by the user. The hash is used to determine if the server has a matching entry. If a match is found, an RSA-based message verification is performed using the public key. Hence, the user is authenticated or denied access based on the encrypted signature.


http://www.ciscozine.com/2012/03/27/how ... ntication/
User avatar
Egaladeist
I am the Eg man : Coo Coo Ca Choo
 
Posts: 18852
Joined: Sun Dec 25, 2005 1:02 am
Location: Canada

Re: How to perform SSH RSA User Authentication

Postby SirDice » Thu Apr 12, 2012 3:54 pm

Yeah, nice. Unfortunately they fail to mention SSH v2 is only available on certain IOS versions. They also fail to mention it doesn't work in combination with AAA. So most of us enterprise users are still stuck with bloody telnet.
Oliver's Law:
Experience is something you don't get until just after you need it.
User avatar
SirDice
I've posted HOW many
 
Posts: 4198
Joined: Mon May 15, 2006 9:59 am
Location: Netherlands


Return to Tech News Zone

Who is online

Users browsing this forum: No registered users and 8 guests

cron