Secure Shell (SSH) in HP SIM
ii.
Enter the following:
copy .dtfSshKey.pub authorized_keys2
.
iii.
Log into the
remote system and change to the user name’s home directory (as
specified in the
passwd
file)
.
iv.
If not present, create an .
ssh
directory.
v.
Copy the
authorized_keys2
file from the CMS into the .
ssh
directory
.
b.
On Linux and HP
-
UX
–
similar process as above, exc
ept as noted:
i.
Log
in as root on the CMS platform
ii.
Create an
authorized_keys2
file for copying to other systems by entering the
command:
cp /etc/opt/mx/config/sshtools/.dtfSshkey.pub /<user’s
home directory>/.ssh/authorized_keys2
iii.
The file is now manually
copied to other systems into the
$HOME/.ssh
directory.
iv.
Verify that the permissions on the
$HOME, $HOME/.ssh
directory, and the
authorized_keys2
file are owner write only and there are no write permissions
for group or everyone.
v.
As a work
-
around to public k
ey authentication you can try password
authentication.
vi.
Configure the CMS with the password for this user:
CMS> mxnodesecurity
-
a
-
p ssh
-
n blade08
-
c myadmin:mypwd
Credential added for node: "blade08"
7.
Run an SSH task on the target system to verify correct
operation:
CMS> mxexec
-
t ls
-
A .
-
n blade08
Running tool ls with job id 2353.
Task Name :defRunNowTaskId_1121379737441_4
Job ID :2353
Tool Name :ls
Job State :Complete
User Name :mydomain
\
myuser
Execute As User :root
Start
Time :Thursday, July 14, 2005 3:22:18 PM PDT
End Time :Thursday, July 14, 2005 3:22:19 PM PDT
Elapsed Time :1 second 266 milliseconds
Node :blade06
Status :Complete
Exit Code :0
STDOUT :
bin
core
dev
etc
Troubleshooting
mxagentconfig
errors
Problem:
mxagentconfig
–
c
failed
CMS> mxagentconfig
-
c
-
n blade08
-
u administrator
administrator@harrison.cup.hp.com: failed
Completed with errors.
This
return indicates that the SSH server cannot be contacted on the ta
rget system, or the specified
user has not been configured for SSH access from this system.
Verify OpenSSH is running on the target system
Run
mxagentconfig
–
a
to add the user.