Question

ssh - how to log into maching on DO

Posted February 16, 2014 2.3k views
omg.....how does one use ssh keys on DO. I get no help no help from support and now very concerned using DO. If I create a pub key and place on DO..then when I boot a machine requesting to use the SSH key I should not get prompted for a password. Yet I do. Considering that DO does not want to help resolve this situation..is there a common solution before I revert back to AWS which has proven to be reliable? what is deal? ubuntu@ubuntu:~/.ssh$ ssh root@192.241.217.125 Agent admitted failure to sign using the key. root@192.241.217.125's password: ubuntu@ubuntu:~/.ssh$ ssh root@192.241.217.125 Agent admitted failure to sign using the key. root@192.241.217.125's password:

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
2 answers
When you created the droplet did you click on the "Add optional SSH Keys"? While it shows on the "Create Droplet" page it is not automatically added (It's gray), unless you click it your droplet will not have the SSH key.
If you didn't and still haven't logged in or modified the image I would recommend destroying the droplet and create a new on, or login with the root password should have been emailed to you. If you did not receive a email you can reset the root password from the DO portal (Droplets->Access->Reset Root Password). From there you should be able to ssh into the system and manually add the SSH key to /root/.ssh/authorized_keys (you may need to create the file file if it missing).

Hello there,

You can check our article on How to Upload an SSH Public Key to an Existing Droplet

https://www.digitalocean.com/docs/droplets/how-to/add-ssh-keys/to-existing-droplet/

You can access the droplet from the DigitalOcean console and then temporary enable the PasswordAuthentication on your droplet and access the droplet with a password to upload the ssh-key.

If you haven’t created new pair of keys you’ll need to do that first.

You can enable PasswordAuthentication for your Droplet by modifying your /etc/ssh/sshd_config file. Once set to Yes restart the SSH service and connect via an SSH client for a more stable connection. You can then modify your ~/.ssh/authorized_keys file to add the appropriate public key.

This change can be made from the DigitalOcean’s console. If you’re having issues accessing the console you can then reach to our amazing support team that can help you further with this.

To enable the PasswordAuthentication follow these steps:

  1. Login to the console on the DigitalOcean website.
  2. Type sudo nano /etc/ssh/sshd_config
  3. Change PasswordAuthentication from “no” to “yes” and save the file
  4. Open a terminal on your computer and type ssh username@[hostname or IP address] or if on a Windows box use PuTTY for password login making sure authentication parameters aren’t pointing to a private key
  5. Login with a password
  6. Type sudo nano ~/.ssh/authorized_keys
  7. Paste public key text here and save the file
  8. Type sudo nano /etc/ssh/sshd_config
  9. Change PasswordAuthentication from “yes” to “no” and save the file
  10. Log out and attempt to log back in (if using PuTTY make sure you set up auth parameters to point to your private key)

You can then upload the key using this command:

ssh-copy-id -i ~/.ssh/mykey user@droplet

Hope that this helps!
Regards,
Alex