bloomo
Explorer
- Joined
- Apr 4, 2014
- Messages
- 58
I've been using password SSH login from a local machine on my network and I'd like to setup SSH keys with password authentication to lock SSH down a little further.
I have generated rsa pub/private keys on my OSX machine and copied the pub key to my users ssh auxiliary field in Freenas.
No dice, I get a "Permission denied (publickey)" message.
I tried looking at the permissions on the authorized_keys file in my user/.ssh folder (on FreeNAS) and it was
-rwxrwxr-x+. I tried to chmod this according to the OpenSSH docs, to change it to 600, (read only). I got permission denied.
After even more research, I found out this is because my dataset is set to Windows. Obviously chmod does not work on windows ACLs. I'm not sure what the setfacl of the .ssh and authorized_keys on Freenas should be at. Don't want to mess with anything I shouldn't.
Anyone feel like putting me out of my misery and helping solve this?
I'm on Freenas 9.2.1.8
Client machine is on OSX Mavericks.
File permissions are:
client: OSX
-rw------- on id_rsa
drwx----- on the .ssh folder
server: FreeNAS
drwxrwxr-x+ on the /user/.ssh folder
-rwxrwxr-x+ on authorized_keys
I have generated rsa pub/private keys on my OSX machine and copied the pub key to my users ssh auxiliary field in Freenas.
No dice, I get a "Permission denied (publickey)" message.
I tried looking at the permissions on the authorized_keys file in my user/.ssh folder (on FreeNAS) and it was
-rwxrwxr-x+. I tried to chmod this according to the OpenSSH docs, to change it to 600, (read only). I got permission denied.
After even more research, I found out this is because my dataset is set to Windows. Obviously chmod does not work on windows ACLs. I'm not sure what the setfacl of the .ssh and authorized_keys on Freenas should be at. Don't want to mess with anything I shouldn't.
Anyone feel like putting me out of my misery and helping solve this?
I'm on Freenas 9.2.1.8
Client machine is on OSX Mavericks.
File permissions are:
client: OSX
-rw------- on id_rsa
drwx----- on the .ssh folder
server: FreeNAS
drwxrwxr-x+ on the /user/.ssh folder
-rwxrwxr-x+ on authorized_keys
Last edited: