SSH Key Management
Piora uses SSH key pairs to securely connect to and manage your VPS servers. Each Piora account automatically generates a dedicated key pair named piora-cloud-ssh-key.
Key Overview
Section titled “Key Overview”| Item | Description |
|---|---|
| Key name | piora-cloud-ssh-key |
| Key type | Ed25519 (or RSA 4096) |
| Private key storage | Piora platform, encrypted |
| Public key | Must be installed on your VPS |
Setting Up the SSH Public Key
Section titled “Setting Up the SSH Public Key”Method 1: Through Your VPS Provider’s Dashboard
Section titled “Method 1: Through Your VPS Provider’s Dashboard”Most VPS providers support importing SSH public keys when creating a server:
- Log into the Piora dashboard and copy your SSH public key
- In your VPS provider’s control panel, find the “SSH Keys” settings
- Add a new key and paste the Piora public key
- Select that key when creating a new VPS
Method 2: Manual Installation on an Existing Server
Section titled “Method 2: Manual Installation on an Existing Server”If you already have a VPS, manually add the public key:
# SSH into your VPSssh root@your-server-ip
# Create the .ssh directory (if it doesn't exist)mkdir -p ~/.ssh
# Append the public key to authorized_keysecho "ssh-ed25519 AAAA... your-piora-public-key" >> ~/.ssh/authorized_keys
# Set correct file permissionschmod 700 ~/.sshchmod 600 ~/.ssh/authorized_keysMethod 3: Using ssh-copy-id
Section titled “Method 3: Using ssh-copy-id”If you have access to the Piora public key file locally:
# Copy the public key to the remote serverssh-copy-id -i piora-cloud-ssh-key.pub root@your-server-ipVerifying the Connection
Section titled “Verifying the Connection”When you add a server in the Piora dashboard, the platform automatically tests the SSH connection. If the connection fails, check the following:
- Is the public key installed correctly — Confirm
~/.ssh/authorized_keyscontains the Piora public key - Are file permissions correct —
.sshdirectory should be700,authorized_keysshould be600 - Is the SSH service running — Run
systemctl status sshdto verify - Is the firewall open — Confirm port 22 is accessible
# Check SSH configurationcat ~/.ssh/authorized_keysls -la ~/.ssh/systemctl status sshdKey Rotation
Section titled “Key Rotation”If you need to regenerate SSH keys (e.g., suspected key compromise):
- Generate a new key in the Piora dashboard under “Security Settings”
- Install the new public key on all connected VPS servers
- After confirming the new key works, remove the old public key
Troubleshooting
Section titled “Troubleshooting”Permission denied (publickey)
Section titled “Permission denied (publickey)”This error usually means the public key is not installed correctly. Check the following in order:
# Verify the authorized_keys file exists and contains the correct keycat ~/.ssh/authorized_keys
# Verify permissionsls -la ~/.ssh/# Expected: drwx------ (700)
ls -la ~/.ssh/authorized_keys# Expected: -rw------- (600)
# Verify SSH config allows public key authenticationgrep "PubkeyAuthentication" /etc/ssh/sshd_config# Should be: yesConnection Timeout
Section titled “Connection Timeout”If the connection times out, it’s usually a firewall or network issue:
- Verify your VPS security group or firewall allows inbound connections on port 22
- Confirm the VPS has a public IP accessible from the internet
- Try pinging the VPS IP from your local machine to confirm connectivity