Generate Private key with OpenSSL and Public key ssh-keygen for SSH

Question

I am trying to generate a secure private and public key with openssl for use with my cloud hosting provider but when I did that the public key output from openssl was not recognized.

$ openssl genrsa -out private.pem -passout file:password.txt  2048

After Generating RSA private key, 2048 bit long modulus, then

$ openssl rsa -in private.pem -passin file:password.txt   -pubout -out public.pem

It wrote the RSA public key. The output is something like this:

Which is the standard format and it works great for other use but All cloud and hosting providers need something like this for public key:

ssh-rsa XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX==

That is the only valid format they recognize.

I know ssh-keygen can do all that easily but I am using the currently latest openssl version 1.0.2h with security fix for some vulnerabilities pointed out by Google and Red Hat employees.

So how do I get the ssh-keygen public key format using my key generated from openssl?

Stack Overflow is a site for programming and development questions. This question appears to be off-topic because it is not about programming or development. See What topics can I ask about here in the Help Center. Perhaps Super User or Unix & Linux Stack Exchange would be a better place to ask. Also see Where do I post questions about Dev Ops?. — jww

Sojimaxi Sojimaxi · Accepted Answer · 2016-05-19T03:30:50

After doing some research and experiments I landed on the simplest solution.

Generate secure private key using openssl with a password length of 32 or more characters, then use ssh-keygen command to get my required output.

ssh-keygen  -y -f private.pem > public_key.pub

It works accurately!

Generate Private key with OpenSSL and Public key ssh-keygen for SSH

1 Answers