While the DigitalOcean documentation suggests you can accept the droplet host key on the first connect without verifying it, to maintain maximum security, you should securely acquire a fingerprint of the host key: Host key fingerprint: On the first connect you will be prompted to verify a server host key.IP address: It is the dotted number in a format below your droplet hostname on the droplet console panel.Follow instructions for setting up SSH public key authentication for OpenSSH servers.Connect to the droplet with the SSH or DigitalOcean recovery console.If you want to add the key to your existing droplet: And confirm by clicking Add SSH Key button.Paste the public key fingerprint from clipboard.
In Authentication > SSH keys section of the Create Droplets form, click New SSH Key.In PuTTYgen, copy the contents of Public key for pasting into OpenSSH authorized_keys file to the clipboard.One way, to run it, is using Tools > Run PuTTYgen command on WinSCP Login dialog.Įasiest way to setup the public key authentication is directly when creating the droplet. PuTTYgen installs by default with WinSCP.While you can use the root password to login with WinSCP, it is more secure to use a public key authentication.įirst you need to generate your key pair, if you do not have one yet: Advertisement Setting up Public Key Authentication