Enabling SSH Access from Remote Hosts

Enabling SSH provides an easy way to access the appliance console from another system. You can enable SSH access from your internal or external network. The local SSH server daemon (sshd) listens on port 22 (the well-known port number for SSH).

The default login grace time is now set as 60 seconds, which is a recommended security practice and federal certification requirements.

To enable SSH access

1. In the AMC, navigate to System Configuration > Services.

2. In the Network Services section, click the Configure link under SSH.

3. To enable SSH, select the Enable SSH check box.

   

4. To add a host from which you want to enable SSH access, click + icon, type the IP address and subnet mask for the host you want to add, and then click OK.
5. To add a authorized key for users that you want to allow to access the appliance without a password, click + icon, paste the public SSH key, and then click OK.

6. In Advanced section you can enable or disable the shell access.

   

   If your network does not allow shell access then clear the Enable shell access check box. When the Enable shell access check box is cleared, the Enable SSH check box is also cleared and disabled. This prevents all shell access via the serial console and SSH.

   The following warning message is displayed.

   

7. Click Save.

To delete a host

1. Select any hosts you want to remove.

2. Click Delete

3. Click Save.

You can enable SSH access from any host by typing 0.0.0.0 for both the IP address and the subnet mask. Keep in mind, however, that the trade-off for this convenience is decreased appliance security.

To delete a public SSH key

1. Select the check box to left of any public key you want to remove.

2. Click Delete icon, and then click Save.