Skip to Content.
Sympa Menu

rare-users - Re: [RARE-users] Rép. : [freertr] SSH to Freertr with Private/Public Keys

Subject: RARE user and assistance email list

List archive

Re: [RARE-users] Rép. : [freertr] SSH to Freertr with Private/Public Keys


Chronological Thread 
  • From: Frédéric LOUI <>
  • To: Nikos Kostopoulos <>
  • Cc: , David Schmitz <>
  • Subject: Re: [RARE-users] Rép. : [freertr] SSH to Freertr with Private/Public Keys
  • Date: Thu, 29 Jun 2023 16:34:03 +0200
  • Dkim-filter: OpenDKIM Filter v2.10.3 zmtaauth01.partage.renater.fr B9FFC14022A
  • List-id: <freertr.groups.io>
  • Mailing-list: list ; contact

Awesome !

> Le 29 juin 2023 à 16:32, Nikos Kostopoulos <> a
> écrit :
>
> Hi,
>
> Thanks for the advice. I successfully connected.
>
> Nikos
>
> Στις 2023-06-29 17:09, Frédéric LOUI έγραψε:
>> Hi Nikos,
>> I could not find the right test case either…
>> Or I missed it :)
>> But after wandering on CLI:
>> MY_FREERTR(cfg)#aaa ?
>> list - set up an aaa list
>> radius - set up a radius client
>> tacacs - set up a tacacs client
>> userlist - build a user list
>> MY_FREERTR(cfg)#aaa userlist MY_AAA_LIST ?
>> <cr>
>> MY_FREERTR(cfg)#aaa userlist MY_AAA_LIST
>> MY_FREERTR(cfg-auther)#username my_user_is_nikos ?
>> <cr>
>> anykey - any pubkey will be accepted
>> anypass - any password will be accepted
>> anything - refused auth will be accepted
>> autocommand - set automatic command
>> autohangup - disconnect user after autocommand
>> countdown - set counter
>> ipv4addr - specify ipv4 address
>> ipv4route - specify ipv4 route
>> ipv6addr - specify ipv6 address
>> ipv6ifid - specify ipv6 interface id
>> ipv6route - specify ipv6 route
>> otppass - set seed of user
>> otpseed - set seed of user
>> password - set password of user
>> privilege - set privilege level of user
>> pubkey - set ssh key of user
>> secret - set secret of user
>> MY_FREERTR(cfg-auther)#username MY_USER_IS_NIKOS pubkey ?
>> [text] - public key of user
>> freeRtr(cfg-auther)#username MY_USER_IS_NIKOS pubkey
>> <put_your_ssh_pub_key_here>
>> Then you need to apply you aaa userlist MY_AAA_LIST to your telnet
>> server: (which actually deals with external connection to MY_FREERTR
>> with TELNET but also SSH.)
>> !
>> server telnet MY_TELNET
>> security authentication MY_AAA_LIST
>> !
>> I tested it and SSH access with SSH public key works perfectly as expected.
>> I hope this helps,
>> Frederic



-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#1626): https://groups.io/g/freertr/message/1626
Mute This Topic: https://groups.io/mt/99851807/6413194
Group Owner:
Unsubscribe: https://groups.io/g/freertr/unsub []
-=-=-=-=-=-=-=-=-=-=-=-





Archive powered by MHonArc 2.6.24.

Top of Page