Secure Shell (SSH) in HP SIM

ManualsBrandsHP ManualsSoftwareHP Systems Insight Manager for Linux

mxagentconfig

n <managed system>

u <username> [

p <password>]

–

host

This option configures host

based authentication on the managed system. It requires that SSH be

installed on the target system and, if the target is a Windows system, the user must be included in the

passwd

file. It connects to the managed system using password authentication and then uses sftp, as

described above. Then it updates the files in the

SSH configuration directory on the managed system:

it adds the public key to the

ssh_known_hosts

file and adds the CMS name to the list of accepted

hosts in the

shosts.equiv

file.

mxagentconfig

n <managed system>

u <username>

This version of the comma

nd does not configure the managed system but instead verifies that SSH

access is correctly configured for the specified user. This command will return success if the

passwd

file allows SSH access for the specified user, the public key has been correctly se

t up for user or host

based authentication, and the user is a member of the system’s Administrators group. An error is

reported if host key checking is enabled and the host key does not match the value in the

known_hosts

file. This command does not verify

password authentication.

> mxagentconfig

–

n brian06.cup.hp.com

u myadmin

myadmin@brian06.cup.hp.com: success

mxagentconfig

n <managed system>

This version of the command removes the specified host from the

known_hosts

file. This command

uses t

he DNS server to find all versions of the system name and removes them from the file.

Mxnodesecurity

The

mxnodesecurity

utility is used to store user names and passwords on the CMS for use when

accessing managed systems. It is used for all management pro

tocols, and has been extended to

support SSH password authentication

. U

ser or host key authentication is preferred and provides

benefits over password authentication. Use this command if you

cannot

configure key

based

authentication using

mxagentconfig

nodesecurity

–

p ssh

–

c <username>:<password>

–

n <managed system>

This form of the command is used to save an SSH user name and password for use with a specific

managed system. For example

the following command cause

HP SIM to use the password ‘mypwd’

when a task for user ‘administrator’ is run on system ‘brian06’:

mxnodesecurity

–

p ssh

–

c administrator:mypwd

–

n brian06.hp.com

Note that this password is only used if user key and host

based authentication have failed and only if

the user name for the

task matches this entry.

mxnodesecurity

–

p ssh [

–

n <managed system>]

This form of the command lists the SSH credentials for the specified system, or all systems if a system

is not specified. For example

the following command lists the SSH credentia

ls for node brian06 (note

that the password itself is not displayed):

> mxnodesecurity

p ssh

–

n brian06.hp.com

NODE

NAME

PROTOCOL

USERNAME

PASSWORD

TRYOTHERS

172.24.30.43

ssh administrator ********

Install OpenSSH

The HP SIM Depl

oy tools can be used to install OpenSSH on any Windows platform

(

Deploy



Drivers, Firmware and Agents



Install OpenSSH