...
Generate Public and Private Keys on Client Machine
Usually this is done on the client machine. In principle, the generation of the Public and Private keys are done by user themselves on their own machine. This is because even the Unix Administrator should not have the user's private key.
| Info |
|---|
Scratching your head on why keys should be generated by users? Think passwords. You almost always define your own password on systems which is never revealed to the Administrator. In the case of Administrators setting your initial password will be a one time password upon successful authentication you then set to your own. |
With a Unix based system this can be accomplished with the command line as follows. Windows does not have a native way of doing this, but most ssh client programs will provide a gui means of key generation.
...
Disable Password Authentication
Adjust Adjust the following,
| Code Block | ||
|---|---|---|
| ||
# Change to no to disable tunnelled clear text passwords #PasswordAuthentication yes |
...