In this lab, you’ll look at the SSH client and server options that work together to make secure connections, including the `ssh_config` and `sshd_config` files. You’ll view the file configurations and make some changes that ensure `root` users are not allowed to sign on via SSH. Additionally, you’ll configure your user environment and a remote server to allow for password-less ssh connections between the two systems using `ssh-keygen`, the `ssh-agent`, and the `ssh-add` commands to enable your shell for such access.
Learning Objectives
Successfully complete this lab by achieving the following learning objectives:
- View and Modify the SSH Client and SSH Server Configurations to Allow Proper Access via SSH
- View the
/etc/ssh/ssh_configfile and configure how the client system handles host keys. - View the
/etc/ssh/sshd_configfile and check the port that SSH uses, verify theAuthenticationsection settings are set to policy, and then create a local user SSH client config file to change how that user gets prompted for keys from hosts they attempt to log in to.
- View the
- Configure Password-less Connections Between Two systems via SSH
- Generate a key pair for use in the lab.
- Upload the client system’s public key to the remote system.
- Sign in via SSH to verify things work properly.
- Add your credentials via the
ssh-addcommand to thessh-agent, and then connect to the remote system without having to authenticate each time with a password.
