How To:Set up transport encryption with SSH: Difference between revisions
Jump to navigation
Jump to search
m (How to use auth SSH moved to Configuring SSH authentication) |
No edit summary |
||
Line 1: | Line 1: | ||
* | * Configure Amanda with --with-ssh-security, it will install dumper/amcheck non-suid.<br/> | ||
* Set "auth ssh" in the dumptype<br/> | |||
* Both server and client must be configured exactly the same amanda username and location of amandad binaries needs to be the same or you can use amandad_path and client_username to specify path to amandad binary and client user name in dumptype definition in [[amanda.conf]] respectively. | |||
* Run ssh-keygen to generate ssh keys | |||
# ssh-keygen -t rsa | |||
It will create ~amanda_user/.ssh/id_rsa and ~amanda_user/.ssh/id_rsa.pub files. | |||
Copy ~amanda_user/.ssh/id_rsa.pub to the client machine through a secure channel and append it to amanda_user/.ssh/authorized_keys | |||
Example for secure channel for copying files: | |||
copy id_rsa.pub to a floppy or flash drive and hand carry to the client machine. | |||
# chmod 600 ~amanda_user/.ssh/authorized_keys | |||
5. Run ssh-add | |||
5. ssh-add | |||
{will prompt for the passphrase} | {will prompt for the passphrase} | ||
{it will add the RSA identities to the authentication agent} | {it will add the RSA identities to the authentication agent} | ||
6. | 6. Run amdump to do backups | ||
Revision as of 01:05, 15 June 2006
- Configure Amanda with --with-ssh-security, it will install dumper/amcheck non-suid.
- Set "auth ssh" in the dumptype
- Both server and client must be configured exactly the same amanda username and location of amandad binaries needs to be the same or you can use amandad_path and client_username to specify path to amandad binary and client user name in dumptype definition in amanda.conf respectively.
- Run ssh-keygen to generate ssh keys
# ssh-keygen -t rsa
It will create ~amanda_user/.ssh/id_rsa and ~amanda_user/.ssh/id_rsa.pub files. Copy ~amanda_user/.ssh/id_rsa.pub to the client machine through a secure channel and append it to amanda_user/.ssh/authorized_keys Example for secure channel for copying files: copy id_rsa.pub to a floppy or flash drive and hand carry to the client machine.
# chmod 600 ~amanda_user/.ssh/authorized_keys
5. Run ssh-add
{will prompt for the passphrase} {it will add the RSA identities to the authentication agent}
6. Run amdump to do backups