Setup passwordless ssh access
Step 1
Determine the <IP address> of the remote computer—see Determine your pCP IP address.
Step 2a
Create the public/private authentication keys using <Enter> to accept the default values.
$ ssh-keygen -t ed25519
Valid encryption types:
- dsa
- rsa
- ed25519
Step 2b
Or, create the public/private authentication keys non-interactively.
$ ssh-keygen -t ed25519 -N "" -f "/home/tc/.ssh/id_ed25519"
Valid encryption types:
- dsa
- rsa
- ed25519
Step 3
Transfer the public authentication key to the remote computer using the following command. The ssh-copy-id command is not available on piCore. You will need to type the remote computer’s tc password when prompted.
$ cat ~/.ssh/id_ed25519.pub | ssh tc@<IP address> 'mkdir -p ~/.ssh && cat >> ~/.ssh/authorized_keys'
If prompted:
The authenticity of host '<IP address> (<IP address>)' can't be established.
ECDSA key fingerprint is SHA256:tnQbsvd9F3mTRxdfggQ2utEUoaEpy2hvMHrd5FU9D/U.
Are you sure you want to continue connecting (yes/no)?
Type yes
.
Warning: Permanently added '<IP address>' (ECDSA) to the list of known hosts.
Step 4
Connect to the remote computer.
$ ssh tc@<IP address>
Step 5a
If prompted:
The authenticity of host '<IP address> (<IP address>)' can't be established.
ECDSA key fingerprint is SHA256:tnQbsvd9F3mTRxdfggQ2utEUoaEpy2hvMHrd5FU9D/U.
Are you sure you want to continue connecting (yes/no)?
Type yes
.
Warning: Permanently added '<IP address>' (ECDSA) to the list of known hosts.
Step 5b
If prompted:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:t7jT8POQnW5XPabyucIE1n5HjSz6CwYjeCA+CiBg.
Please contact your system administrator.
Add correct host key in /home/tc/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /home/tc/.ssh/known_hosts:8
ECDSA host key for <IP address> has changed and you have requested strict checking.
Host key verification failed.
$ ssh-keygen -R <IP address>
# Host <IP address> found: line 8
/home/tc/.ssh/known_hosts updated.
Original contents retained as /home/tc/.ssh/known_hosts.old
Go back to Step 4.
Step 6
Do a backup on the remote computer.
$ pcp bu
Step 7
Close connection to the remote computer and return to the local computer.
$ exit
Step 8
Do a backup on the local computer.
$ pcp bu