topic SSH authentication using public/private key in Network Access Control https://community.cisco.com/t5/network-access-control/ssh-authentication-using-public-private-key/m-p/2608852#M72282 <P>Hello, friends.</P><P>I'm trying to setup ssh using public/private key on Cisco router.</P><P>1) I launch puttygen. Press "Generate" button.</P><P>After key genereating, I get following</P><P><IMG src="https://community.cisco.com/legacyfs/online/media/puttygen_0.png" class="migrated-markup-image" /></P><P>2) In the "key passphrase" and "Confirm passphrase" I entered "cisco".</P><P>3) After that, I click "save public key" button and save public key in the folder on the desktop of my windows PC.</P><P>3) Than I click "save private key" button and save private key in the sane folder.</P><P>4) After that I go to the CLI of my router and do following:</P><P><BR />Router(config)#ip domain-name cisco.com</P><P>Router(config)#crypto key generate rsa modulus 1024</P><P>Router(config)#ip ssh version 2</P><P>Router(config)#ip ssh pubkey-chain</P><P>Router(conf-ssh-pubkey)#username denis</P><P>Router(conf-ssh-pubkey-user)#key-string</P><P>Router(conf-ssh-pubkey-data)#&lt;here I copy and paste public key, that was generated by puttygen&gt;</P><P>Router(conf-ssh-pubkey-data)#exit</P><P>Router(conf-ssh-pubkey-user)#exit</P><P>Router(config-ssh-pubkey)#exit</P><P>Router(config)#</P><P>5) Than I add my private key in Putty settings.</P><P>But when I trying to connect to router using putty, I'm getting following error</P><P><IMG src="https://community.cisco.com/legacyfs/online/media/putty-error.png" class="migrated-markup-image" /></P><P>6) Why Cisco Router refuse my private key?</P><P>Because in the "show run" output of my router I can see, that finerprint is the same as in the puttygen output</P><P><IMG src="https://community.cisco.com/legacyfs/online/media/sh_run.png" class="migrated-markup-image" /></P><P>&nbsp;</P><P>Also, the output of "show ip ssh" show correct public key, that was generated by puttygen and that was pasted in the configurtion of the router.</P><P>Help. please. What I'm doing wrong.</P><P>Thanks.</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 13 Mar 2019 00:43:41 GMT Denis Orlov 2019-03-13T00:43:41Z SSH authentication using public/private key https://community.cisco.com/t5/network-access-control/ssh-authentication-using-public-private-key/m-p/2608852#M72282 <P>Hello, friends.</P><P>I'm trying to setup ssh using public/private key on Cisco router.</P><P>1) I launch puttygen. Press "Generate" button.</P><P>After key genereating, I get following</P><P><IMG src="https://community.cisco.com/legacyfs/online/media/puttygen_0.png" class="migrated-markup-image" /></P><P>2) In the "key passphrase" and "Confirm passphrase" I entered "cisco".</P><P>3) After that, I click "save public key" button and save public key in the folder on the desktop of my windows PC.</P><P>3) Than I click "save private key" button and save private key in the sane folder.</P><P>4) After that I go to the CLI of my router and do following:</P><P><BR />Router(config)#ip domain-name cisco.com</P><P>Router(config)#crypto key generate rsa modulus 1024</P><P>Router(config)#ip ssh version 2</P><P>Router(config)#ip ssh pubkey-chain</P><P>Router(conf-ssh-pubkey)#username denis</P><P>Router(conf-ssh-pubkey-user)#key-string</P><P>Router(conf-ssh-pubkey-data)#&lt;here I copy and paste public key, that was generated by puttygen&gt;</P><P>Router(conf-ssh-pubkey-data)#exit</P><P>Router(conf-ssh-pubkey-user)#exit</P><P>Router(config-ssh-pubkey)#exit</P><P>Router(config)#</P><P>5) Than I add my private key in Putty settings.</P><P>But when I trying to connect to router using putty, I'm getting following error</P><P><IMG src="https://community.cisco.com/legacyfs/online/media/putty-error.png" class="migrated-markup-image" /></P><P>6) Why Cisco Router refuse my private key?</P><P>Because in the "show run" output of my router I can see, that finerprint is the same as in the puttygen output</P><P><IMG src="https://community.cisco.com/legacyfs/online/media/sh_run.png" class="migrated-markup-image" /></P><P>&nbsp;</P><P>Also, the output of "show ip ssh" show correct public key, that was generated by puttygen and that was pasted in the configurtion of the router.</P><P>Help. please. What I'm doing wrong.</P><P>Thanks.</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 13 Mar 2019 00:43:41 GMT https://community.cisco.com/t5/network-access-control/ssh-authentication-using-public-private-key/m-p/2608852#M72282 Denis Orlov 2019-03-13T00:43:41Z