Putty is a commonly used open source SSH client program in Windows environments. It can be configured to use an RSA keypair to authenticate users. The general process is to generate the public and private keypair, install the private key in the user’s Putty client environment, and install the public key on the user’s ssh server environment. The eToken can be used to contain the private key instead of storing it with the Putty client.

These instructions describe how to configure a UTORauth-issued eToken and certificate with a Putty client in a Windowsenvironment to authenticate to an ssh server.


  1. Possession of eToken with UTORauth-issued certificate and a current version of the SafeNet client installed on all Putty client hosts.

Putty Installation and Configuration

  1. Download and install Putty-CAC from http://www.risacher.org/putty-cac/.
  2. Configure the client as described under the ‘CAPI configuration’ section.
  3. Copy the public key as described in the section above into .ssh/authorized_keys file on the ssh server.


Start the Putty client in the usual way.