Sample code for 30+ languages & platforms
.NET Core C#

SSH HSM Public Key Authentication

See more uncategorized Examples

Demonstrates how to authenticate with an SSH server using public key authentication using an HSM (USB token or smartcard).

Chilkat .NET Core C# Downloads

.NET Core C#
bool success = false;

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Note: Chilkat's PKCS11 implementation runs on Windows, Linux, MacOs, and other supported operating systems.

Chilkat.Pkcs11 pkcs11 = new Chilkat.Pkcs11();

// This would be a path to a .dylib on MacOS, or a path to a .so shared lib on Linux.
pkcs11.SharedLibPath = "C:/Program Files (x86)/Gemalto/IDGo 800 PKCS#11/IDPrimePKCS1164.dll";
string pin = "0000";
int userType = 1;

// Establish a PKCS11 logged-on session using the driver (.so, .dylib, or .dll) as specified in the SharedLibPath above.
success = pkcs11.QuickSession(userType,pin);
if (success == false) {
    Debug.WriteLine(pkcs11.LastErrorText);
    return;
}

// Set PKCS11 attributes to find our desired private key object.
Chilkat.JsonObject json = new Chilkat.JsonObject();
json.UpdateString("class","private_key");
json.UpdateString("label","MySshKey");

// Get the PKCS11 handle to the private key located on the HSM.
uint priv_handle = pkcs11.FindObject(json);

// Get the PKCS11 handle to the corresponding public key located on the HSM.
json.UpdateString("class","public_key");

uint pub_handle = pkcs11.FindObject(json);

Chilkat.SshKey key = new Chilkat.SshKey();
// The key type can be "rsa" or "ec"
string keyType = "rsa";
success = key.UsePkcs11(pkcs11,priv_handle,pub_handle,keyType);
if (success == false) {
    Debug.WriteLine(key.LastErrorText);
    return;
}

Chilkat.Ssh ssh = new Chilkat.Ssh();

success = ssh.Connect("example.com",22);
if (success != true) {
    Debug.WriteLine(ssh.LastErrorText);
    return;
}

// Authenticate with the SSH server using the login and
// HSM private key.  (The corresponding public key should've 
// been installed on the SSH server beforehand.)
success = ssh.AuthenticatePk("myLogin",key);
if (success != true) {
    Debug.WriteLine(ssh.LastErrorText);
    return;
}

Debug.WriteLine("Public-Key Authentication Successful!");