Question on SSH Keys for cPanel users.

SSH Key === for === cpanel user account (not root)

Hi,

Its not that easy. I just found this issue while trying to securing my server right now. Create a key in Manage SSH Keys is just for root account. I cannot access SSH if I use this key for cpanel account. In the public key also state the root@server.domain.tld. Note that I am using Putty.

Jailed shell can be use only awhen cpanel user login SSH using password. I have no luck to try using key generated in Manage SSH Keys. Generate using OpenSSL then Import Key might be a chance. Still trying...

Actually I want to disable SSH Password Authorization Tweak so root and all cpanel account must be login using key, not password.

 

Hi, Thank you for the reply. Yes I know how to enable disable SSH Password Tweak, Jailed/unjailed a user, authorize/unauthorize or manage a key

I also notice generated key in the Security >> SSH/Shell Access >> Manage SSH Keys is only for root account.

The only thing is "How to generate a SSH key for cpanel user" as one of the question by the original poster. I believe people reading this thread still dont know how.

more specific:

I am not sure what do you mean by install. either in cPanel interface or in shell command. In user cPanel, there is no such thing about SSH key or may be I miss something there. I notice about GnuPG Keys but I think it use for communication and email. I just generate GnuPG key from cPanel and import to WHM Manage SSH Keys, success but not displayed in the Public Key. Only Private Key displayed, from the private key, I generate putty PPK format but error shown "puttygen: error loading `/root/.ssh/testkeySSH': file does not begin with OpenSSH key header". I dont have an idea to convert it from PGP to putty PPK. Still have no luck.

 

When I import a public key via cPanel, it says that it was successful and I see the .pub file in the /home/username/.ssh/ folder, but it isn't listed on the manage keys page so I can't authorise it.

 

We managed to get the SSH key working for a jailed shell user by manually creating the "authorized_keys" file in their /home/username/.ssh/ folder and adding the public key to it.

cPanel: Main >> Security >> SSH/Shell Access >> Manage SSH Keys still doesn't recognise that the key exists.

Should imported keys be manageable via cPanel?

 

11.26.20 Stable

 

I'm on WHM 11.28.87 now and the keys generated by cPanel don't work in Putty and the keys generated by Putty Key Generator won't import into cPanel.

 

I see there is a new thread on this here http://forums.cpanel.net/f5/case-47947-cant-create-ssh-keys-cpanel-user-197232-p2.html

 

I wasn't sure how to apply the patch so I just added the public key manually.