Sample code for 30+ languages & platforms
Chilkat2-Python

SSH Authentication using X.509 Certificates

See more SSH Examples

Demonstrates how to authenticate with an SSH/SFTP server using an certificate's private key.

Note: See X.509v3 Certificates for SSH Authentication for more information.

Chilkat Chilkat2-Python Downloads

Chilkat2-Python
import sys
import chilkat2

success = False

# This example assumes the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

ssh = chilkat2.Ssh()

hostname = "ssh.example.com"
port = 22
success = ssh.Connect(hostname,port)
if (success != True):
    print(ssh.LastErrorText)
    sys.exit()

# Load the cert + private key from a .pfx.
# Note: Chilkat provides methods for loading certs and private keys from many sources, including smart cards and USB tokens (HSM's)
cert = chilkat2.Cert()
success = cert.LoadPfxFile("qa_data/pfx/example.pfx","pfx_password")
if (success != True):
    print(cert.LastErrorText)
    sys.exit()

# Get the cert's private key (as PEM) to be used for SSH authentication.
# (The public key is installed on the server.)
privKeyPem = cert.GetPrivateKeyPem()
if (cert.LastMethodSuccess == False):
    print(cert.LastErrorText)
    sys.exit()

key = chilkat2.SshKey()

# Load a private key from a PEM string:
success = key.FromOpenSshPrivateKey(privKeyPem)
if (success != True):
    print(key.LastErrorText)
    sys.exit()

# Authenticate with the SSH server.
success = ssh.AuthenticatePk("myLogin",key)
if (success != True):
    print(ssh.LastErrorText)
    sys.exit()

print("Public-Key Authentication Successful!")