[Note: If you have just generated a new key, upload it to https://web.racf.bnl.gov/Facility/SshKeys/UploadSshKey.php.]

Email Wayne Betts (wbetts@bnl.gov) explaining that you need to access ONL nodes for EPD subsystem work and he will (hopefully) create an account and approve access for you.

Upload you public key to https://www.star.bnl.gov/starkeyw/ and request account association for 

• onlldap.starp.bnl.gov (130.199.60.57)
• daqman.starp.bnl.gov (130.199.60.86)
• evp.starp.bnl.gov (130.199.60.32)

As indicated, it may take ~10 minutes to take effect.

At this point, you should be able to do:

• $ ssh username@ssh.sdcc.bnl.gov
• $ ssh stargw.starp.bnl.gov
• $ ssh -A -X -t evpops@daqman

On my first computer, this worked fine. On my second computer, I got the message  "Permission denied (publickey,gssapi-keyex,gssapi-with-mic)" when doing ssh stargw.starp.bnl.gov. What happened next I only remotely understand. Wayne solved the issue by, in my ~/.ssh/ directory, doing

• $ ssh-agent

and just running the output (literally:

• • joseph@PHY-NC216619:~/.ssh$ ssh-agent
  • SSH_AUTH_SOCK=/tmp/ssh-4UBXz4C27unw/agent.23171; export SSH_AUTH_SOCK;
  • SSH_AGENT_PID=23172; export SSH_AGENT_PID;
  • echo Agent pid 23172;
  • joseph@PHY-NC216619:~/.ssh$ SSH_AUTH_SOCK=/tmp/ssh-4UBXz4C27unw/agent.23171; export SSH_AUTH_SOCK;
  • joseph@PHY-NC216619:~/.ssh$ SSH_AGENT_PID=23172; export SSH_AGENT_PID;
  )

then:

• $ ssh-add
• $ ssh -A username@rssh.rhic.bnl.gov

(ssh-add required me entering my private key password) 
and I could access the gateway! 

Another problem: When trying to log on, I got the message:
This was solved by simply renaming the known hosts (just with $ mv .ssh/known_hosts .ssh/old_known_hosts )