Unicode C
Unicode C
SSH Authentication using X.509 Certificates
See more SSH Examples
Demonstrates how to authenticate with an SSH/SFTP server using an certificate's private key.Note: See X.509v3 Certificates for SSH Authentication for more information.
Chilkat Unicode C Downloads
#include <C_CkSshW.h>
#include <C_CkCertW.h>
#include <C_CkSshKeyW.h>
void ChilkatSample(void)
{
BOOL success;
HCkSshW ssh;
const wchar_t *hostname;
int port;
HCkCertW cert;
const wchar_t *privKeyPem;
HCkSshKeyW key;
success = FALSE;
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
ssh = CkSshW_Create();
hostname = L"ssh.example.com";
port = 22;
success = CkSshW_Connect(ssh,hostname,port);
if (success != TRUE) {
wprintf(L"%s\n",CkSshW_lastErrorText(ssh));
CkSshW_Dispose(ssh);
return;
}
// Load the cert + private key from a .pfx.
// Note: Chilkat provides methods for loading certs and private keys from many sources, including smart cards and USB tokens (HSM's)
cert = CkCertW_Create();
success = CkCertW_LoadPfxFile(cert,L"qa_data/pfx/example.pfx",L"pfx_password");
if (success != TRUE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkSshW_Dispose(ssh);
CkCertW_Dispose(cert);
return;
}
// Get the cert's private key (as PEM) to be used for SSH authentication.
// (The public key is installed on the server.)
privKeyPem = CkCertW_getPrivateKeyPem(cert);
if (CkCertW_getLastMethodSuccess(cert) == FALSE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkSshW_Dispose(ssh);
CkCertW_Dispose(cert);
return;
}
key = CkSshKeyW_Create();
// Load a private key from a PEM string:
success = CkSshKeyW_FromOpenSshPrivateKey(key,privKeyPem);
if (success != TRUE) {
wprintf(L"%s\n",CkSshKeyW_lastErrorText(key));
CkSshW_Dispose(ssh);
CkCertW_Dispose(cert);
CkSshKeyW_Dispose(key);
return;
}
// Authenticate with the SSH server.
success = CkSshW_AuthenticatePk(ssh,L"myLogin",key);
if (success != TRUE) {
wprintf(L"%s\n",CkSshW_lastErrorText(ssh));
CkSshW_Dispose(ssh);
CkCertW_Dispose(cert);
CkSshKeyW_Dispose(key);
return;
}
wprintf(L"Public-Key Authentication Successful!\n");
CkSshW_Dispose(ssh);
CkCertW_Dispose(cert);
CkSshKeyW_Dispose(key);
}