Authorized RSA1 Keys Pane
Note You must be administrator to add or edit authorized keys. If you have operator or Viewer privileges and you try to add or edit an authorized key, you receive the
Delivery Failed message.
Use the Authorized RSA1 Keys pane to specify SSHv1 public keys for a client allowed to use RSA authentication to log in to the local SSH server. The Authorized RSA1 Keys pane displays the public keys of all SSH clients allowed to access the sensor. You can view only your key and not the keys of other users.
Each user who can log in to the sensor has a list of authorized keys compiled from each client the user logs in with. When using SSHv1 to log in to the sensor, you can use the RSA authentication rather than using passwords.
Use an RSA key generation tool on the client where the private key is going to reside. Then, display the generated public key as a set of three numbers (modulus length, public exponent, public modulus) and enter those numbers in the fields on the Authorized RSA1 Keys pane.
Defining Authorized RSA1 Keys
To define public RSA1 keys, follow these steps:
Log in to the IDM using an account with administrator privileges.
Step 2 Choose
Configuration > Sensor Management > SSH > Authorized RSA1 Keys,
and then click
to add a public key to the list. You can add a maximum of 50 SSH authorized keys.
Step 3 In the ID field, enter a unique ID to identify the key.
Step 4 In the Modulus Length field, enter an integer. The modulus length is the number of significant bits in the modulus. The strength of an RSA key relies on the size of the modulus. The more bits the modulus has, the stronger the key.
Note If you do not know the modulus length, public exponent, and public modulus, use an RSA key generation tool on the client where the private key is going to reside. Display the generated public key as a set of three numbers (modulus length, public exponent, and public modulus) and enter those numbers in Steps 4 through 6.
Step 5 In the Public Exponent field, enter an integer. The RSA algorithm uses the public exponent to encrypt data. The valid value for the public exponent is a number between 3 and 2147483647.
Step 6 In the Public Modulus field, enter a value. The public modulus is a string value of numbers (where modulus is (2 ^ length) < modulus < (2 ^ (length + 1))). The RSA algorithm uses the public modulus to encrypt data.
Tip To discard your changes and close the Add Authorized RSA1 Key dialog box, click Cancel.
Step 7 Click
. The new key appears in the authorized keys list in the Authorized RSA1 Keys pane.
Step 8 To edit an existing entry in the authorized keys list, select it, and click
Step 9 Edit the Modulus Length, Public Exponent, and Public Modulus fields.
You cannot modify the ID field after you have created an entry.
Tip To discard your changes and close the Edit Authorized RSA1 Key dialog box, click Cancel.
Step 10 Click
. The edited key appears in the authorized keys list in the Authorized RSA1 Keys pane.
Step 11 To delete a public key from the list, select it, and click
. The key no longer appears in the authorized keys list in the Authorized RSA1Keys pane.
Tip To discard your changes, click Reset.
Step 12 Click
to apply your changes and save the revised configuration.