search cancel

Setting up public key authentication for password-less login

book

Article ID: 214330

calendar_today

Updated On:

Products

Security Analytics

Issue/Introduction

Some vulnerability scanning tools need to access Security Analytics using public key authentication. Assured Compliance Assessment Solution (ACAS) scanner is an example.  ACAS needs to login without a  password.

Cause

This is for remote access by ACAS and can be used for other third party password-less logins.

Resolution

  1. Build a public key on the initiating ACAS server using ssh-keygen
  2. Copy the contents of the generated public key and add it to the /root/.ssh/authorized_keys file or copy the contents using ssh-copy-id [email protected]_SERVER. 
  3. Confirm permissions are 600 and ownership is root. 
  4. Try logging in to the Security Analytics server