login about faq

I tried copying the public and private RSA keys from my primary SSH server to me secondary SSH server. When I do, both stop and will not restart until one of them has a new set of keys generated.

What am I doing wrong?

asked Sep 22 '16 at 23:29

ministryman's gravatar image

ministryman
6113


The 2 servers shouldn't be correlated because they wouldn't know of each others keys or settings. When you say both stop are you referring to the SSH daemon service, of the whole server itself. Or is the server and service starting fine, but your unable to connect?

I'm assuming you followed this posting?

link

answered Sep 23 '16 at 20:51

Joe%20-%20Tectia%20Support's gravatar image

Joe - Tectia Support ♦♦
55215

Lets call them server A and Server B. Each starts off with their own set of RSA and DSA keys.

If I place A's RSA and DSA keys on B, and in the Configuration screen, point B to those keys, B will stop running Tectia Server. Clicking the start button results in it stopping and starting.

If I have B recreate a new set of keys, it will run just fine.

(Sep 23 '16 at 20:55) ministryman ministryman's gravatar image

And yes, I did, which is why I'm confused why it doesn't work. Maybe I am missing an "import" function/menu/option?

(Sep 23 '16 at 20:57) ministryman ministryman's gravatar image

ok, I was thinking that both servers stopped working after the copy, but sounds like its just Server B.

I should have asked, before but is this Windows or nix? If windows try checking the permissions on the private host key to make sure only SYSTEM and the administrators group have permissions. For nix, the file should be owned and accessible only to root.

(Sep 23 '16 at 21:06) Joe - Tectia Support ♦♦ Joe%20-%20Tectia%20Support's gravatar image

Now that it works, why don't the fingerprints match? Is it because it is derived from the hardware the software is installed on?

If the fingerprints don't match, I have to upgrade my non-Tectia clients to something that will support more than one fingerprint per server name.

(Sep 23 '16 at 22:55) ministryman ministryman's gravatar image

The Fingerprints should match. The name of the saved public key may not because its in a hashed format, but the fingerprints when running the ssh key gen. commands or when connecting for the first time, should show matching fingerprints.

(Sep 26 '16 at 14:35) Joe - Tectia Support ♦♦ Joe%20-%20Tectia%20Support's gravatar image

Facepalm.......bad tech bad, bad tech.....

I placed A's keys in B's folder. It's running.....

link

answered Sep 23 '16 at 22:41

ministryman's gravatar image

ministryman
6113

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×63
×3
×3
×3
×1

Asked: Sep 22 '16 at 23:29

Seen: 2,058 times

Last updated: Sep 26 '16 at 14:35

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.