Configuring SSH Public Key Authentication in Cerberus FTP Server Professional and Enterprise Editions:
Cerberus FTP Server's Professional and Enterprise editions empower administrators to set up SSH public key authentication for user accounts engaged in SFTP connections. This authentication method can be strengthened by combining it with password authentication, providing enhanced security options for clients. Additionally, administrators have the flexibility to configure individual users with various combinations of password and/or public key authentication methods.
How Public Key Authentication Functions:
In the context of public key authentication, Cerberus verifies that the signature presented by an SFTP client aligns with the user's associated public key.
The Cerberus FTP Server User Manager offers the ability to set a required SSH authentication method for each user. This authentication method can be configured to mandate either a password only (default setting), a public key only, both a password and a public key, or a password or a public key.
For users whose authentication method includes public key authentication, there's an option to select a public key file. This file can be in SSH format (as defined in RFC 4716), OpenSSH v2 format, or derived from a PEM or DER encoded certificate. It's important to note that if Cerberus FTP Server is being used with FIPS 140-2 enabled, users should refer to a specific support article to ensure compatibility with public keys containing an exponent (e) equal to 37.