How to Set Up Keys for Empty Password Files When Using One Key Pair

If you are using empty password files and you generated only one key pair, complete this task to copy the keys to the Local Distributors and Remote Agents.

Steps

1. From the Master Server, copy the private key to each machine that is upstream. Save the key in the home directory.

   % cp /User-home/.ssh/id_rsa /User-home-upstream/.ssh/id_rsa

   User-home is the home directory of the currently logged in user on the Master Server machine. User-home-upstream is the home directory on the machine that is upstream. The upstream machine is the machine that initiates the SSH connection with the machine that is downstream.

   Each Local Distributor can have a unique private key, or you can use the same private key for all Local Distributors.

2. Copy the public key to each machine that is downstream. Save the key in the /.ssh/authorized_keys2 file.

   % cp /HOME-MS/.ssh/id_rsa.pub /HOME-downstream/.ssh/authorized_keys2

   User-home is the home directory on the Master Server machine. User-home-downstream is the home directory on the Local Distributor or the Remote Agent machine to which the machine that you set up in the previous step will connect. Copy the public key to all Local Distributors and Remote Agents that connect using SSH.

3. Ensure that the .ssh/ directory and any parent directories are not world writable.

4. Ensure that the private key file, .ssh/id_rsa, is not accessible by other users or groups.

5. Change the permissions for the .ssh/authorized_keys2 file to 600.