How to set the configuration to access the target server by SSH with the SSH key pair

Document ID : KB000091767
Last Modified Date : 18/05/2018
Show Technical Document Details
Introduction:
The PAM can use the SSH key authentication(SSH key pair), not only the manually input the password, to access the target application by SSH connection.  

 
Environment:
CA Privileged Access Manager r3.x
Instructions:
1. It creates the Public key and the Private key file. Put the public key file with renaming to the "authorized_keys" as follows.
 
User-added image
 

2. Click the Credentials >> Manage Targets >> SSH Key Pair Policies. Add the SSH Key Pair Policy as per the created public/private key 
 
User-added image
 
User-added image
 

3. It creates the Target Application, and select the created SSH Key Pair policy in the SSH-2 tab as follows if you would like to create the key by PAM. If not, this steps can be ignored.
 
User-added image

User-added image
 


4. It opens the Target Account and select the "SSH-2 Public key Authentication". And specify the appripriate files of the public key and the private key.
(If you would like to create the SSH key by PAM, click the "Generate Credential" button. The SSH Key Pair settings will be used by this timing) 
 

User-added image
Additional Information:
PAM does NOT have the feature of the other SSH authentication(For example, the TeraTerm can use the "Challenge Response" and "Pageant") than manually input the password, SSH key authentication.