Configure the SSH server

perform the following steps to configure the ssh client public key on the ssh server and disable non key based modes of authentication log in to the ssh server machine as the root user open a terminal session and go to the location of the ssh client public key file that you exported from the {{k3}} run the following openssl command to convert the public key that was exported from the {{k3}} from der format to pem format (this is required for the ssh keygen command in step 4) openssl rsa inform der outform pem in ssh pub out ssh client public pem pubin ssh requires a specific format for the public keys used within an ssh session run the following ssh keygen command to convert the ssh client public pem file that was output from the previous command to the required ssh public key format, and add it to the / ssh/authorized keys file ssh keygen f ssh client public pem i m pkcs8 >> / ssh/authorized keys open the ssh daemon configuration file vim /etc/ssh/sshd config inside the file, make sure that the following directive is set pubkeyauthentication yes optionally, you can set the following directives as well to make the ssh daemon respond only to ssh keys passwordauthentication no challengeresponseauthentication no save and close the file when finished you must restart the ssh service to apply the changes on ubuntu or debian machines, issue the following command sudo service ssh restart on centos/fedora machines, the daemon is called sshd sudo service sshd restart