Versions Compared

Old Version 150

changes.mady.by.user Dominique Lucas

Saved on

compared with

New Version 151

changes.mady.by.user Paul Dando

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Update for Fedora-33

...

This is a good way to access Teleport credentials via a shared file system from any host.

Even more difficult client environments

Recent Fedora Linux distributions (such as Fedora-33) using OpenSSH 8.4p1 no longer accept the "ssh-rsa" signature scheme using the SHA-1 hash algorithm in conjunction with the RSA public key algorithm.

As a workaround for this problem, you  may need to add ssh-rsa as a PubkeyAcceptedKeyTypes to your ~/.ssh/config file:

Code Block
# ~/.ssh/config file:
Host ecgate
  User          ab0
  PubkeyAcceptedKeyTypes +ssh-rsa
  IdentityFile	~/.tsh/keys/shell.ecmwf.int/firstname.lastname@ecmwf.int
  ProxyCommand /usr/bin/ssh -q -o PubkeyAcceptedKeyTypes=+ssh-rsa -i ~/.tsh/keys/shell.ecmwf.int/firstname.lastname@ecmwf.int -W %h:%p ab0@shell.ecmwf.int