Generating Key Pair and Registering Public Key

Key Authentication is an alternative means to authenticate using a pair of the generated public key and the private key saved on your computer instead of password authentication. Password-based authentication can be misused by a third person through cracking such as dictionary attacks. All you have to do is to keep in your mind that the private key should be strictly managed, and then there is no concern of such attacks.
A private key can be protected by setting up the passphrase (passwords with longer strings of characters), and it protects your private key from being misused in case if your computer or laptop was stolen and the private key leaks.

The use of private keys without a passphrase is prohibited and must be set. If a private key without a passphrase is placed on the login node, it will be automatically deleted.

Generate the key pair using the ssh-keygen command in the 'Command Prompt' on Windows or in the 'Terminal' on Mac. On Windows, it is also possible to generate keys with MobaXterm.

$ ssh-keygen -t rsa -b 3072 -m pem  #(1)
Generating public/private rsa key pair.
Enter file in which to save the key (/home/taro/.ssh/id_rsa): #(2)
Enter passphrase (empty for no passphrase):  #(3)
Enter same passphrase again:  #(4)
Your identification has been saved in /home/taro/.ssh/id_rsa.
Your public key has been saved in /home/taro/.ssh/id_rsa.pub.
The key fingerprint is:
8c:13:10:d2:c0:12:c5:0b:53:d4:3f:b6:9c:16:f6:ca taro@test.kyoto-u.ac.jp 
  1. Generate a 3072 bit public/private key using RSA version 2.
  2. Enter a file name in which you save the public/private key. The default file name is ~/.ssh/id_rsa. Click Enter.
  3. Enter a passphrase.
  4. Enter the passphrase again.

If you have generated a key pair with the default storage location, check %HOMEPATH%.ssh (on Windows) and ~/.ssh (on Mac/Linux) and you will find the keys generated as follows. id_rsa is the private key and id_rsa.pub is the public key. Before logging in to the supercomputer, you need to register your public key by following the procedure in Registering a public key via the user portal.

  • On Windows
>dir %HOMEPATH%\.ssh
2022/10/01  01:23             1,675 id_rsa
2022/10/01  01:23               410 id_rsa.pub
>type %HOMEPATH%\.ssh\id_rsa.pub
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAsotK4PbdadfhbXbTPIsxvwKFIg+8Lmp0pXKckAOuSnoaaT516ddj9rnIJlE/JaJf0cltp+087R6Ov8LPY+QeQvzzUfGiAQQVdwBiMrVQVqXylIoidU86uz/w8GITXltu1m+fXO+O26dEESQWsAgiNfVOzB57OCadGX1iCy6/2CxvNEB3mnHkvmC+H3azP27tTARHXqTBThuxjwR9iZBkx2iYSW3tVg0cDdzuLP3ULVrJXHrrLCr1HGaAzQEs0M+vtrV+G8gLlkeqbKy4YKWKUY/xkM8c/20jnSKP36SeU4fezbRQREkYqRjx4a3kx97K1sfch/WKwzuHWqhYYMtvEw== taro@test.kyoto-u.ac.jp
  • On Mac/Linux
$ ls ~/.ssh/
id_rsa id_rsa.pub
$ cat ~/.ssh/id_rsa.pub 
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAsotK4PbdadfhbXbTPIsxvwKFIg+8Lmp0pXKckAOuSnoaaT516ddj9rnIJlE/JaJf0cltp+087R6Ov8LPY+QeQvzzUfGiAQQVdwBiMrVQVqXylIoidU86uz/w8GITXltu1m+fXO+O26dEESQWsAgiNfVOzB57OCadGX1iCy6/2CxvNEB3mnHkvmC+H3azP27tTARHXqTBThuxjwR9iZBkx2iYSW3tVg0cDdzuLP3ULVrJXHrrLCr1HGaAzQEs0M+vtrV+G8gLlkeqbKy4YKWKUY/xkM8c/20jnSKP36SeU4fezbRQREkYqRjx4a3kx97K1sfch/WKwzuHWqhYYMtvEw== taro@test.kyoto-u.ac.jp

  1. Go to the User Portal , and enter your User ID and Password to log in.
  2. Select the SSH Public Key in the left menu.
  3. In the Add SSH Public Key page, enter a title (any title you like), copy and paste the created public key to the Public Key . After confirming set passphrase of the private key , and then click the Add to complete the registration process.
  4. After registration is completed, you can log in to the system using the private key and passphrase. For how to log in, please refer to Logging In on Windows or Logging In on Mac and Linux.

A leakage of its private key poses a serious security threat to the system. Please make sure that you maintain the confidentiality of your private key. If there is any implication that your private key may leak out, contact us by Email at portal * kudpc.kyoto-u.ac.jp (please replace * with @ ).

When you log in to the system using multiple PCs such as a desktop PC and a laptop, the different key pairs are required for each PC.

Please add or delete the public key with reference to Registering a public key via the user portal.

Registering a public key via the Use Portal becomes invalid after you successfully logged in to the systems and a certain period of time has elapsed. When you lost your private key or forgot your passphrase, please send us an email detailing the following information using your registered email address:

  • To:consult * kudpc.kyoto-u.ac.jp ( please replace * with @)
  • From:your registered email address
  • Subject:Requesting for the approval to re-register the public key
  • Text:
    • Your user ID:
    • Organization where you belong:
    • Your name:
    • Details and reasons for losing your private key or forgetting your passphras