This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
wiki:advanced:authentication:passwordless-gpg-card [2010/01/15 19:44] h1 |
wiki:advanced:authentication:passwordless-gpg-card [2011/10/17 19:29] h1 Page moved from passwordless_authentication_using_gpg-cards to wiki:passwordless_authentication_using_gpg-cards |
||
---|---|---|---|
Line 120: | Line 120: | ||
IMPORTANT: login Name is a name of user on remote system | IMPORTANT: login Name is a name of user on remote system | ||
- | |||
- | 2. Configuring ssh connection | ||
- | 2.1. Starting gpg-agent with ssh support | ||
Be sure, that pinentry-x2go is installed. For test purposes you can use | Be sure, that pinentry-x2go is installed. For test purposes you can use | ||
Line 139: | Line 136: | ||
</ | </ | ||
- | 2.2. Export SSH environment variables (copy gpg-agent output in console) | + | Export SSH environment variables (copy gpg-agent output in console) |
+ | |||
+ | < | ||
user@x2goclient$ GPG_AGENT_INFO=/ | user@x2goclient$ GPG_AGENT_INFO=/ | ||
export GPG_AGENT_INFO; | export GPG_AGENT_INFO; | ||
Line 145: | Line 144: | ||
SSH_AUTH_SOCK; | SSH_AUTH_SOCK; | ||
user@x2goclient$ SSH_AGENT_PID=24620; | user@x2goclient$ SSH_AGENT_PID=24620; | ||
+ | </ | ||
- | 2.3. You can check the key on your smart card with command: | + | You can check the key on your smart card with command: |
+ | |||
+ | < | ||
user@x2goclient$ ssh-add -l | user@x2goclient$ ssh-add -l | ||
- | 1024 ef: | + | </ |
- | (RSA) | + | |
- | 2.4. Copy public part of your key to remote computer | + | < |
+ | 1024 ef: | ||
+ | </ | ||
+ | |||
+ | Copy public part of your key to remote computer | ||
+ | |||
+ | < | ||
user@x2goclient$ ssh-copy-id beispielb@x2goserver | user@x2goclient$ ssh-copy-id beispielb@x2goserver | ||
+ | </ | ||
+ | |||
+ | < | ||
beispielb@x2goserver' | beispielb@x2goserver' | ||
+ | </ | ||
+ | |||
Now try logging into the machine, with "ssh ' | Now try logging into the machine, with "ssh ' | ||
check in: | check in: | ||
+ | < | ||
| | ||
+ | </ | ||
to make sure we haven' | to make sure we haven' | ||
- | 2.5. Testing ssh connection | + | Testing ssh connection |
+ | < | ||
user@x2goclient$ ssh beispielb@x2goserver | user@x2goclient$ ssh beispielb@x2goserver | ||
+ | </ | ||
+ | |||
+ | < | ||
Last login: Thu Sep 24 22:00:50 2009 from x2goclient | Last login: Thu Sep 24 22:00:50 2009 from x2goclient | ||
+ | </ | ||
+ | |||
+ | < | ||
beispielb@x2goserver: | beispielb@x2goserver: | ||
+ | </ | ||
stop gpg-agent: | stop gpg-agent: | ||
+ | |||
+ | < | ||
user@x2goclient$ kill $SSH_AGENT_PID | user@x2goclient$ kill $SSH_AGENT_PID | ||
+ | </ | ||
- | 3. Using smart card authentication with x2goclient | + | Using smart card authentication with x2goclient |
+ | < | ||
user@x2goclient$ x2goclient --pgp-card | user@x2goclient$ x2goclient --pgp-card | ||
+ | </ | ||
+ | |||
or | or | ||
+ | |||
+ | < | ||
user@x2goclient$ x2goclient_gtk --pgp-card | user@x2goclient$ x2goclient_gtk --pgp-card | ||
+ | </ | ||
+ |