Skip to end of metadataGo to start of metadata![Add Add](/uploads/1/2/6/0/126084885/903025618.png)
- Jenkins Git Ssh Key
- Jenkins Generate Ssh Key Pair Authentication
- Jenkins Generate Ssh Key Pairs
- Jenkins Create Ssh Key Pair
- Generate Ssh Key Windows
Gitolite is a wrapper around a base git installation which facilitates the secure management of project repositories and of the user privileges governing access to those repositories. Its simple configuration is well documented in a short README in the distribution. Essentially, those sys-admins charged with administration of the central git installation clone the gitolite configuration directory, make their changes to the configuration files and push those back to origin. A post-commit hook in the gitolite installation deploys the new configuration, creating and modifying project repositories as required and installing, revoking or updating the keys for authorized users as appropriate.
With a secure shell (SSH) key pair, you can create virtual machines (VMs) in Azure that use SSH keys for authentication, eliminating the need for passwords to sign in. This article shows you how to quickly generate and use an SSH public-private key file pair for Linux VMs. Adding your SSH key to the ssh-agent. Before adding a new SSH key to the ssh-agent to manage your keys, you should have checked for existing SSH keys and generated a new SSH key. When adding your SSH key to the agent, use the default macOS ssh-add command, and not an application installed by macports, homebrew, or some other external source. Jun 22, 2012 SSH keys provide a more secure way of logging into a virtual private server with SSH than using a password alone. With SSH keys, users can log into a server without a password. This tutorial explains how to generate, use, and upload an SSH Key Pair.
![Add Add](/uploads/1/2/6/0/126084885/903025618.png)
The gitolite configuration consists of conf/gitolite.conf used to define project repositories and the group and user privileges which apply to it; and a directory of ssh public keys in the form: keydir/User_name.pub.
The security model depends on the creation of a single user with privileges over the git installation and the project repositories it hosts. By default, this user is called git. Only the git user may interact with the projects.
The user privilege model is built on ssh key pairs. Each developer or tester with need for access to a project repository hosted by gitolite generates a key pair, traditionally done using ssh-keygen, and provides their public key (.ssh/id_rsa.pub by default) to the administrator of the repository. The gitolite administrator then adds the public key to their cloned gitolite configuration, runs `git add keydir/new_user.pub` then `git commit` then `git push origin` to enable the new user.
The syntax used in conf/gitolite.conf is documented in the linked README above.
Jenkins Git Ssh Key
Applying what we no know of the Gitolite architecture then requires the following steps:
generate an ssh key-pair
Generate an ssh key-pair with an empty passphrase on the jenkins server for the jenkins server
It is important to use an empty passphrase, or the CI server will pause until it times out waiting for the entry of the passphrase.
Next harvest that public key for the next step:
create a gitolite user for jenkins
create a gitolite user for jenkins like so:
Paste the jenkins public key into this file, ensuring that it is on a single line, collapsing line feeds if it wrapped when you pasted it into the file.
extend privileges to the jenkins user to each relevant project repository
Extend privileges to the jenkins user to each relevant project repository like so:
Read only privileges are sufficient to permit jenkins to clone the directory.
push changes to gitolite configuration
Jenkins Generate Ssh Key Pair Authentication
push changes to gitolite configuration like so:
Jenkins Generate Ssh Key Pairs
add /etc/hosts entry for git repository
If the same IP hosts both gitolite and jenkins, you next want to add an entry to /etc/hosts for the git repository on the jenkins server. Product key generator for games.
add gitolite ssh fingerprint to jenkins' .ssh/known_hosts
Add the gitolite repository's ssh fingerprint to the jenkins user's .ssh/known_hosts file in their home directory on the jenkins' server like so:
Make sure you clean up after the fingerprint is captured, so you are ready for the next build.
configure the git credentials in jenkins for the Project
Configure the git credentials in Jenkins for the Project. If the gitolite and jenkins installations are hosted at the same IP and you set up the entry in /etc/hosts, then you can use the same credentials and url as you would to clone the project in your local sandbox. Otherwise you will need to repeat the .ssh/known_hosts step above for localhost or 127.0.0.1.
Several tools exist to generate SSH public/private key pairs. The following sections show how to generate an SSH key pair on UNIX, UNIX-like and Windows platforms.
Generating an SSH Key Pair on UNIX and UNIX-Like Platforms Using the ssh-keygen Utility
UNIX and UNIX-like platforms (including Solaris and Linux) include the ssh-keygen utility to generate SSH key pairs.
To generate an SSH key pair on UNIX and UNIX-like platforms using the ssh-keygen utility:
- Navigate to your home directory:
- Run the ssh-keygen utility, providing as
filename
your choice of file name for the private key:The ssh-keygen utility prompts you for a passphrase for the private key. - Enter a passphrase for the private key, or press Enter to create a private key without a passphrase:Note:While a passphrase is not required, you should specify one as a security measure to protect the private key from unauthorized use. When you specify a passphrase, a user must enter the passphrase every time the private key is used.The ssh-keygen utility prompts you to enter the passphrase again.
- Enter the passphrase again, or press Enter again to continue creating a private key without a passphrase:
- The ssh-keygen utility displays a message indicating that the private key has been saved as
filename
and the public key has been saved asfilename
.pub
. It also displays information about the key fingerprint and randomart image.
Jenkins Create Ssh Key Pair
Generating an SSH Key Pair on Windows Using the PuTTYgen Program
The PuTTYgen program is part of PuTTY, an open source networking client for the Windows platform.
To generate an SSH key pair on Windows using the PuTTYgen program:
Generate Ssh Key Windows
- Download and install PuTTY or PuTTYgen.To download PuTTY or PuTTYgen, go to http://www.putty.org/ and click the You can download PuTTY here link.
- Run the PuTTYgen program.
- Set the Type of key to generate option to SSH-2 RSA.
- In the Number of bits in a generated key box, enter 2048.
- Click Generate to generate a public/private key pair.As the key is being generated, move the mouse around the blank area as directed.
- (Optional) Enter a passphrase for the private key in the Key passphrase box and reenter it in the Confirm passphrase box.Note:While a passphrase is not required, you should specify one as a security measure to protect the private key from unauthorized use. When you specify a passphrase, a user must enter the passphrase every time the private key is used.
- Click Save private key to save the private key to a file. To adhere to file-naming conventions, you should give the private key file an extension of
.ppk
(PuTTY private key).Note:The.ppk
file extension indicates that the private key is in PuTTY's proprietary format. You must use a key of this format when using PuTTY as your SSH client. It cannot be used with other SSH client tools. Refer to the PuTTY documentation to convert a private key in this format to a different format. - Select all of the characters in the Public key for pasting into OpenSSH authorized_keys file box.Make sure you select all the characters, not just the ones you can see in the narrow window. If a scroll bar is next to the characters, you aren't seeing all the characters.
- Right-click somewhere in the selected text and select Copy from the menu.
- Open a text editor and paste the characters, just as you copied them. Start at the first character in the text editor, and do not insert any line breaks.
- Save the text file in the same folder where you saved the private key, using the
.pub
extension to indicate that the file contains a public key. - If you or others are going to use an SSH client that requires the OpenSSH format for private keys (such as the
ssh
utility on Linux), export the private key:- On the Conversions menu, choose Export OpenSSH key.
- Save the private key in OpenSSH format in the same folder where you saved the private key in
.ppk
format, using an extension such as.openssh
to indicate the file's content.