Secure Shell (SSH) in HP SIM

ManualsBrandsHP ManualsSoftwareHP Systems Insight Manager 5.x HP-UX Software

Password authentication can be used as an alternative to key

based authentication, for example, if

there are problems installing the keys on the managed system.

The CMS must be configured with the password to use for the managed system.

mxnodesecurity

–

p ssh

–

c root:mypwd

–

n <managed system>

SSH files

On each ma

naged system configured for SSH

there are the following files:



The SSH server program files



The SSH server private key

ssh_host_dsa_key

and the corresponding public key

ssh_host_dsa_key.pub

. These keys are generated when SSH is installed and are used to

dentify the managed system.



The SSH server configuration file,

sshd_config

. Among other settings, this file enables host

authentication and user key authentication.



For Windows only, the

passwd

file located in the

OpenSSH

etc

directory. This file

specif

ies which users are permitted to access the system through SSH, along with their home

directory.



Each user configured for user public key authentication will have the user’s public key in the

authorized_keys2

file. This file is in the .ssh directory of t

he user’s home directory, as

specified in the passwd file.

(For Windows, the file location is

Documents and

Settings

Administrator

.ssh

and in

Program Files

Systems Insight

Manager

config

sshtools

hpl1pa01.wbemqa.com

Note that on Windows, HP SIM

often uses the directory hpsimssh instead of the real home directory for a user; see the

sshuser

command

for details.



If host

based authentication is used, the name of the CMS system must be in the

shosts.equiv

file and the public key of the CMS in the

ssh_known_hosts

file. These

files are in the SSH server configuration directory.

In addition, the following files are used on the CMS when making SSH requests:



The CMS private key

.dtfSshKey

and the corresponding public key

.dtfSshKey.pub

These are gen

erated when HP SIM is installed and are used to authenticate users or the CMS

itself.



The

known_hosts

file

contains the public keys from managed systems running SSH. This file

might be automatically populated by HP SIM.

Directory location

of variou

s SSH files

File type

Linux

Windows

OpenSSH install

/etc/opt/ssh/

/etc/ssh/

Program Files

OpenSSH

OpenSSH keys

ssh_host_dsa_key

/etc/opt/ssh/

/etc/ssh/

Program Files

OpenSSH

etc

OpenSSH

configuration

sshd_config

/etc/opt/ssh/

/etc/ssh/

Program Files

OpenSSH

etc

passwd and

group files

/etc/

Program Files

OpenSSH

etc

(uses SID for Windows user; specifies home

directory)