Command to copy client public key to Windows OpenSSH SFTP/SSH server authorized keys file
ssh-copy-id script works only against *nix servers (or servers with *nix emulation), as it internally executes some *nix shell commands on the server (like exec, sh, umask, rm, mkdir, tail, cat, etc).
You can setup the key manually. I'm aware that you know that, but as there are subtle differences, when doing that on a Windows server, I'll mention it anyway for benefit of other readers.
Main steps are:
- Create the
.sshfolder in your Windows account profile folder (typically inC:\Users\username\.ssh). - Create
authorized_keysfile in the folder and add your public key to it. - Make sure that the ACL of the
.sshfolder and theauthorized_keysare set so that only a respective Windows account have a write access to the folder and the file and the account that runs the server have a read access. Also note that the location of the file for Administrators is overridden in the defaultsshd_configfile to%ALLUSERSPROFILE%\ssh\administrators_authorized_keys.
For details, see my guide for Setting up SSH public key authentication on Win32-OpenSSH.
If you want to do that from your local machine, you can do it using sftp. Particularly if you have no key on the server registered yet, you can just upload the id_rsa.pub file as authorized_keys file:
$ sftp [email protected]
[email protected]'s password:
Connected to [email protected].
sftp> mkdir .ssh
sftp> cd .ssh
sftp> put id_rsa.pub authorized_keys
Uploading id_rsa.pub to /C:/Users/martin/.ssh/authorized_keys
id_rsa.pub 100% 401 197.5KB/s 00:00
sftp> bye
The above is basically, what ssh-copy-id does internally – Except that ssh-copy-id appends the authorized_keys, what plain sftp cannot do. If you need to append, you can download authorized_keys to the local machine, append it locally and re-upload it back.
Alternatively, you can setup the key from another Windows machine using (my) WinSCP client, with its Install Public Key into Server function.
See also my answer to Setting up public key authentication to Linux server from Windows (ppk private key).
Related videos on Youtube
15 : 46
06 : 06
12 : 26
02 : 45
23 : 01
Panadol Chong
Updated on September 18, 2022Comments
-
Panadol Chong over 1 year
I have a Linux machine, and I need to sftp to a Windows SFTP server. So for first step, I create my own
id_rsafile and theid_rsa.pubin my Linux machine.Then I copy the text in the
id_rsa.pubinto theid_rsa.pubin the SFTP server.And the
sftpconnection work correctly.However, I would like to ask about the command to copy the public key from client to server. I have search in google and I get a command which is:
ssh-copy-id -i id_rsa.pub ftp_user*@10.7.8.32But I hit the following error:
'exec' is not recognized as an internal or external command, operable program or batch file. The system cannot find the path specified.
I believe there is some command exits for this right? Instead of I copy the public key manually to the SFTP server.
The SFTP version is SFTP protocol version 3.
-
Martin Prikryl over 2 yearsThat might work in some cases, but it won't take care of the specifics on the Win32-OpenSSH.
