Page tree
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 9 Next »

Unimus currently only supports SSH keys without passwords, so the key being imported into Unimus must not be password-protected.
The SSH keys imported into Unimus are stored encrypted in the Unimus DB (using the encryption key configured during the Deployment Wizard).

SSH private keys in the following formats are currently supported:

 rsadsaecdsaed25519
PEMyesyesyesno
PKCS8yesyesnono
OpenSSH
(RFC4716)
nononono

Different versions of ssh-keygen (OpenSSH) use different default key types and formats across the different OpenSSH versions.

Key generation and conversion / transformation

If you have an existing key in OpenSSH format, you can use ssh-keygen to transform key formats. This command will transform an OpenSSH private key into a PEM encoded key:

ssh-keygen -e -f /path/to/openssh.key -m PEM > /path/to/new_pem.key

-e read OpenSSH formatted key
-f read from file
-m export format

Alternatively, you can generate a new key pair already formatted in a supported format:

ssh-keygen -t ecdsa -m PEM -f /path/to/key

-t use ecdsa type
-m use PEM format
-f output to file
  • No labels