So I sorted it …<\/p>\n\n\n\n
- \n
- Install OpenSSH server on Windows: PS: Add-WindowsCapability -Online -Name OpenSSH.Server<\/em> (this might need the version number which is best obtained using Get-WindowsCapability -Online | Where-Object Name -like ‘OpenSSH*’.<\/em><\/li>\n\n\n\n
- Copy your chosen ssh authentication public key into c:\\users\\${username}\\.ssh\\authorized_keys<\/em> file. <\/li>\n\n\n\n
- Configure c:\\programdata\\ssh\\sshd_config<\/em> to permit public key authentication (“PubkeyAuthentication yes”).<\/li>\n\n\n\n
- Whilst in the same file, comment out the section with the line beginning “Match Group administrators” which whilst makes things less secure did at least work! The section does refer to a file: c:\/ProgramData\/ssh\/administrators_authorized_keys<\/em> but adding to this file didn’t seem to work for me. <\/li>\n\n\n\n
- Verify that the daemon is running: PS: get-service -name sshd <\/em>\n
- \n
- If it shows as not running, enable with: PS: set-service -name sshd -startuptype ‘automatic’<\/em><\/li>\n\n\n\n
- And either reboot, or start it manually: PS: start-service -name sshd<\/em><\/li>\n<\/ul>\n<\/li>\n\n\n\n
- At this point you should be able to login with a simple ssh username@hostname<\/em> command. If not you’ve either left something out, or I have!<\/li>\n<\/ol>\n\n\n\n
At this point you should be able to run the relevant update commands :-<\/p>\n\n\n\n
- \n
- ssh username@hostname UsoClient ScanInstallWait<\/em>. Operating system updates which may or may not work, so I wouldn’t disable the automatic updates at this point.<\/li>\n\n\n\n
- ssh username@hostname winget upgrade –all<\/em>. This updates additional software (something I’ve called “layered products” in the past) installed via winget<\/em> (or the Microsoft “Store”. This can sometimes stop with a mysterious error but should usually work. <\/li>\n<\/ol>\n\n\n\n
No guarantees with this sort of thing!<\/p>\n\n\n\n
![\"\"](\"https:\/\/i0.wp.com\/really.zonky.org\/wp-content\/uploads\/2022-03-28-peering-at-each-other.jpeg?resize=695%2C521&ssl=1\")
Peering At Each Other<\/figcaption><\/figure>\n","protected":false},"excerpt":{"rendered":" Well, this is kind of a weird one. But most of the systems I run are Linux-based, and over the years I have ‘developed’ a simple script that I run from my main workstation which iterates through all of the systems applying updates. As non-interactively as possible – it could even be scheduled to run […]<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false,"_share_on_mastodon":"0"},"categories":[4,209,226],"tags":[2244,2245,2243,2242],"class_list":["post-6447","post","type-post","status-publish","format-standard","hentry","category-it","category-linux-it","category-working-notes","tag-openssh","tag-usoclient","tag-windows-11","tag-winget","category-4-id","category-209-id","category-226-id","post-seq-1","post-parity-odd","meta-position-corners","fix"],"share_on_mastodon":{"url":"https:\/\/mstdn.social\/@grumpygrimnir\/112722658141517912","error":""},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p1f2KI-1FZ","_links":{"self":[{"href":"https:\/\/really.zonky.org\/index.php?rest_route=\/wp\/v2\/posts\/6447","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/really.zonky.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/really.zonky.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/really.zonky.org\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/really.zonky.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6447"}],"version-history":[{"count":2,"href":"https:\/\/really.zonky.org\/index.php?rest_route=\/wp\/v2\/posts\/6447\/revisions"}],"predecessor-version":[{"id":6449,"href":"https:\/\/really.zonky.org\/index.php?rest_route=\/wp\/v2\/posts\/6447\/revisions\/6449"}],"wp:attachment":[{"href":"https:\/\/really.zonky.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6447"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/really.zonky.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6447"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/really.zonky.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6447"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- ssh username@hostname winget upgrade –all<\/em>. This updates additional software (something I’ve called “layered products” in the past) installed via winget<\/em> (or the Microsoft “Store”. This can sometimes stop with a mysterious error but should usually work. <\/li>\n<\/ol>\n\n\n\n
- And either reboot, or start it manually: PS: start-service -name sshd<\/em><\/li>\n<\/ul>\n<\/li>\n\n\n\n
- Copy your chosen ssh authentication public key into c:\\users\\${username}\\.ssh\\authorized_keys<\/em> file. <\/li>\n\n\n\n