Managing Key Pair Authentication
- Keep the private key private. Do not store it in a public location.
- Always save it with a well-chosen passphrase.
- Be aware that although Password Manager, when using the default FlexNet Beacon vault, keeps a duplicate of the private key file (in an encrypted form), the original is still required if you need to reconfigure Password Manager.
As an additional security step, OpenSSH offers a from option that allows you to enter extra details on the public key, limiting the hosts for which the public key will work. Notice that this may render the target device inaccessible if the network configuration of the inventory beacon changes. To mitigate this, you can include additional hosts, or create another private-public key pair to allow access in this circumstance. See the OpenSSH documentation for further details.
Testing key pair credentials
Key format | SSH client | SSH agent | Testing notes |
---|---|---|---|
OpenSSH |
ssh | ssh-agent |
Use ssh with high verbosity to see which methods of authentication are enabled in the authentication process. |
PuTTY |
PuTTY.exe | Pageant |
You can adjust settings in PuTTY.exe to enable or disable
the |
FlexNet Manager Suite (On-Premises)
2023 R2