Manualshelf

Secure Shell (SSH) in HP SIM

ManualsBrandsHP ManualsSoftwareHP Systems Insight Manager for Linux
21222324252627282930
MyAdmin:unused_by_nt/2000/xp:500:513:U
-
BRIAN06
\
MyAdmin,S
-
1
-
5
-
21
-
1148942700
-
1292286586
-
3675345140
-
500:/home/Administrator:/bin/switch
If the information is not correct, use sshuser to add the user and repeat the SSH test from
step 3.
7.
Is t
he user configured for SSH access?
Use
mxagentconfig
to configure the user name for remote access using user public key
authentication. Use
mxagentconfig
c
to verify the configuration.
CMS> mxagentconfig
-
c
n blade08
-
u myadmin
myadmin@blade08: succes
s
If this fails, check the
authorized_keys2
file on the managed system in the .ssh
subdirectory of appropriate home directory for the specified user, as specified in the
passwd
file. It should contain the public key from the CMS. See the
Diagnostic tool to check SSH
setup
section to diagnose errors from
mxagentconfig
. Complete the following steps to
manually install user public keys:
a.
On a Windows CMS:
i.
Go to
C:
\
Program Files
\
HP
\
Systems Insight
Manager
\
config
\
sshtools
.
ii.
Enter the foll
owing:
copy .dtfSshKey.pub authorized_keys2
.
iii.
Log into the remote system and change to the user name’s home directory (as
specified in the
passwd
file.
iv.
If not present, create an .
ssh
directory.
v.
Copy the
authorized_keys2
file from the CMS into the .
ssh
dire
ctory
.
b.
On Linux and HP
-
UX
similar process as above, except as noted:
i.
Log
in as root on the CMS platform
ii.
Create an
authorized_keys2
file for copying to other systems by entering the
command:
cp /etc/opt/mx/config/sshtools/.dtfSshkey.pub /<user’s
home di
rectory>/.ssh/authorized_keys2
iii.
The file is now manually copied to other systems into the
$HOME/.ssh
directory.
iv.
Verify that the permissions on the
$HOME
,
$HOME/.ssh
directory, and the
authorized_keys2
file are owner write only and there are no write permis
sions
for group or everyone.
v.
As a work
-
around to public key authentication, you can try password
authentication.
vi.
Configure the CMS with the password for this user:
CMS> mxnodesecurity
-
a
-
p ssh
-
n blade08
-
c myadmin:mypwd
Credential added for node: "blade
08"
8.
Run an SSH task on the target system to verify correct operation:
CMS> mxexec
-
t dir
-
A .
-
n blade08
Running tool dir with job id 2286.
Task Name :defRunNowTaskId_1121366433279_3
Job ID :2286
Tool Name :dir
Job State :Complet
e
User Name :mydomain
\
bdh
Execute As User :myadmin
Start Time :Thursday, July 14, 2005 11:40:33 AM PDT
End Time :Thursday, July 14, 2005 11:40:34 AM PDT
Elapsed Time :1 second 407 milliseconds
Node :blade08