{"id":4293,"date":"2012-07-02T13:30:05","date_gmt":"2012-07-02T11:30:05","guid":{"rendered":"http:\/\/security-planet.de\/?p=4293"},"modified":"2012-07-02T13:30:05","modified_gmt":"2012-07-02T11:30:05","slug":"cisco-asa-public-key-basierte-ssh-logins","status":"publish","type":"post","link":"https:\/\/cyber-fi.net\/index.php\/2012\/07\/02\/cisco-asa-public-key-basierte-ssh-logins\/","title":{"rendered":"Cisco ASA: Public-Key-basierte SSH-Logins"},"content":{"rendered":"<p>Die Router bieten schon l\u00e4ngere Zeit (ab IOS 15.0) die M\u00f6glichkeit, sich per Public-Key-Authentifizierung anzumelden. Inzwischen besteht auch auf der ASA ab <a href=\"http:\/\/www.cisco.com\/en\/US\/docs\/security\/asa\/asa84\/release\/notes\/asarn84.html#wp580804\">Version 8.4(4.1)<\/a> diese M\u00f6glichkeit:<\/p>\n<pre class><code>asa(config)# username test attributes\nasa(config-username)# ssh authentication publickey ?\n\nusername mode commands\/options:\n  WORD  Raw SSH-RSA public key\nasa(config-username)# ssh authentication publickey <\/code><\/pre>\n<p>Nachdem man hier seinen Public-Key eingef\u00fcgt hat, kann man sich per SSH ohne Angabe eines Passwortes mit der ASA verbinden.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Die Router bieten schon l\u00e4ngere Zeit (ab IOS 15.0) die M\u00f6glichkeit, sich per Public-Key-Authentifizierung anzumelden. Inzwischen besteht auch auf der ASA ab Version 8.4(4.1) diese M\u00f6glichkeit: asa(config)# username test attributes asa(config-username)# ssh authentication publickey ? username mode commands\/options: WORD Raw SSH-RSA public key asa(config-username)# ssh authentication publickey Nachdem man hier seinen Public-Key eingef\u00fcgt hat, kann <\/p>\n<div class=\"read-more-text\"><a href=\"https:\/\/cyber-fi.net\/index.php\/2012\/07\/02\/cisco-asa-public-key-basierte-ssh-logins\/\" class=\"read-more\">continue reading<\/a><\/div>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"twitterCardType":"","cardImageID":0,"cardImage":"","cardTitle":"","cardDesc":"","cardImageAlt":"","cardPlayer":"","cardPlayerWidth":0,"cardPlayerHeight":0,"cardPlayerStream":"","cardPlayerCodec":"","footnotes":""},"categories":[7],"tags":[76,137],"class_list":["post-4293","post","type-post","status-publish","format-standard","hentry","category-cisco-security","tag-asa","tag-cisco"],"_links":{"self":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/posts\/4293","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/comments?post=4293"}],"version-history":[{"count":0,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/posts\/4293\/revisions"}],"wp:attachment":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/media?parent=4293"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/categories?post=4293"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/tags?post=4293"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}