In public-key authentication, the server authenticates the user by the presence of the user's public key in the user's $HOME/.ssh2 directory on the server. The public key ties the user ID to the user's private key stored on the client.

Figure 4.1. User public-key authentication

For more information on public-key authentication, see Tectia Server for IBM z/OS User Manual.