Introduction
For access from Dbeaver to Git I used a PAT key before, but I heard that SSH is a better secured way to access Azure DevOps/Git, therefore I investigated the usage and implementation SSH access to Azure Devops. This blogpost is a walkthrough the process.
Generating the SSH key
First, generate a key with the tool 'ssh-keygen' by opening a CMD window. Enter the following command in the box.
D:\>ssh-keygen -C "hennie.denooijer@xxxx.nl" Generating public/private rsa key pair. Enter file in which to save the key (C:\Users\hdeno/.ssh/id_rsa): Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in C:\Users\hdeno/.ssh/id_rsa. Your public key has been saved in C:\Users\hdeno/.ssh/id_rsa.pub. The key fingerprint is: SHA256:LtBYadsfaSDFSDFSFDAY90qnea5MXLOJKs5giLlmFHXs hennie.denooijer@xxxx.nl The key's randomart image is: +---[RSA 2048]----+ | ... .o++o. | |. ... o=*. | | . ooo. . o.. | |. o.++E o | | o oo.. S+ . . | | + ..... + o o | | + ...+. . + . | |o . . = o. = . | | o.. .o o. . o | +----[SHA256]-----+
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDGhi6uphRGsgfWvlnckcpqEMGevUuS1iDoUx645965m
621qoCheJbaPtzVP4ldwVKU8dRtileWkMGjwYjRej0TWXSk4NouooctXGmZIrBy95ZDK6fkmXJEyIWvxO
581+C/qhPxTD+Nmsac2+yXB123D+s2Ky7wsKNFPg2RZ1VrW0RRgoegGCJqfT1EmL0D44R2yWggbTlDcL
E11K/trlGbxCcoAc/TP8YDGB+PLeV4qEqciJasasaaaLhWD72Mnj8M2ar5213wwdItSQlC4Di0sO792
J4RbtLlyBbFCrqNt9nnLIxj8BzWLZBsD7qISa1FYqh5jwpRlRpmuDLDdLRd hennie.denooijer@xxxx.nl Add the SSH key to Azure Devops
The next step is to add the key to Azure Devops. Goto settings and click on the SSH Public keys.
Here is the error :
An error occurred while adding the xxx key: Invalid key: Key must be Base64 encoded with OpenSSH format and RSA type. Valid keys will start with "ssh-rsa".
After some reading of the Microsoft documentation I understand that I have to use the key that is stored in the id_rsa.pub. Copy that in the Public Key Data box.
D:\Git\SF_PERFTEST_TPC_H_MODULEA>ssh -T git@ssh.dev.azure.com Warning: Permanently added the RSA host key for IP address 'xx.74.xx.1' to the list of known hosts. Enter passphrase for key 'C:\Users\hdeno/.ssh/id_rsa': remote: Shell access is not supported. shell request failed on channel 0
Microsoft Documentation states the following : "Test the connection by running the following command: ssh -T git@ssh.dev.azure.com. If everything is working correctly, you'll receive a response which says: remote: Shell access is not supported." Be careful : NOT supported. If this is the paraphrase then it is ok.
Using the SSH key in DBeaver
The next step is trying to use the SSH key in DBeaver and here I made a mistake by trying to use the https uri.
git remote set-url origin git@ssh.dev.azure.com:v3/xxxx/xxx/_git/SF_PERFTEST_TPC_H_MODULEA
But, that resulted in an error.
Warning: Permanently added the RSA host key for IP address 'xx.xx.xx.103' to the list of known hosts. remote: Expected _full or _optimized, not '_git'. fatal: Could not read from remote repository. Please make sure you have the correct access rights and the repository exists.
I changed the uri a bit (I removed _git from the uri). Better is to copy the SSH string from Azure DevOps.
git remote set-url origin git@ssh.dev.azure.com:v3/xxx/xxxx/SF_PERFTEST_TPC_H_MODULEA
Then when I try to check in with the tool DBeaver the following window appeared and here I had to enter the paraphrase that I entered before, during the creation of the SSH key.
Final thoughts
A small howto blog on creating a SSH key for accessing Azure DevOps from a tool like DBeaver.
Geen opmerkingen:
Een reactie posten