Functions
Key Pair Service (KPS) is a secure, reliable, and easy-to-use cloud service designed to manage and protect your SSH key pairs (key pairs for short).
As an alternative to the traditional username+password authentication method, key pairs allow you to remotely log in to Linux ECSs.
A key pair, including one public key and one private key, are generated based on a cryptographic algorithm. The public key is automatically saved in KPS, while the private key can be saved to the user's local host. You can also save your private keys in KPS and manage them with KPS based on your needs. If you have configured the public key in a Linux ECS, you can use the private key to log in to the ECS without a password. Therefore, you do not need to worry about password interception, cracking, or leakage.
Creating a Key Pair
For system security purposes, it is recommended that you use the key pair authentication mode to authenticate the user who attempts to log in to an ECS. You can create a key pair for authentication during ECS login.
If you need to use your own key pair (for example, using the key pair created by the PuTTYgen tool), you can import the public key to the management console and use its private key to remotely log in to an ECS. You can also manage the private key on the Huawei Cloud console for unified management.
Using a Key Pair
You can use a key pair to log in to Linux ECSs password-free. This prevents password interception and cracking, improving ECS security.
When purchasing an ECS running a Linux OS, you can choose to authenticate users trying to log in to your ECS with the SSH key pair provided by KPS. When purchasing an ECS running a Windows OS, you can choose to obtain the password used to log in to your ECS from the key file provided by KPS.
Managing Key Pairs
To manage local private keys, you can import the private key to the KPS console for unified management. The managed private keys are encrypted by the keys provided by KMS, ensuring security for storage, import, and export of the private keys. You can download the private keys from the console whenever you need. To ensure the security of the private keys, keep the downloaded private keys properly.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
