A remote host is a host that a host group references. The host group is configured on a host with an agent; the remote host typically has no agent. Targeting a remote host requires that a process operator has SSH connectivity between an agent host and the referenced remote host.
Establish an SSH connection with one of the following methods:
When you create a user account and a trust relationship, the product uses the trust relationship as the backup mechanism. If the authentication fails for the configured credentials, the product authenticates with the key pair.
Generate a key pair with the SSH-keygen program. Save the private key to the configured SSH Keys Path, and then copy the public key to each remote host that the host group references. Put the public key file where the SSH daemon can find it. The OpenSSH daemon, sshd, looks for the key in /home/user_name/.ssh/authorized_keys.
You can create a trust relationship to a remote host that a host group references.
Follow these steps:
For example, if you downloaded OpenSSH on a Windows system, change to the C:\Program Files\OpenSSH\bin directory that contains the ssh-keygen program.
ssh-keygen -t dsa -b 1024 -f user_name
Defines the value that you configured as Remote User Name in the Host Group.
The following message and prompt are displayed:
Generating the public/private dsa key pair.
Enter passphrase <empty for no passphrase>:
The following prompt is displayed:
Enter same passphrase again:
The following messages are displayed:
Your identification has been saved in user_name.
Your public key file has been saved in user_name.pub.
The key fingerprint is:
fingerprint_string login_name@host_name
The product creates the private key file named user_name and the public key file named user_name.pub. The passphrase for the key file is the same as the password on the user account that is used for SSH access.
Different SSH daemons follow different conventions. Examine the ssh-keygen options for public key file formatting requirements.
cat user_name.pub >> home/user_name/.ssh/authorized_keys
su root
service sshd restart
ssh user_name@remote_host
Copyright © 2014 CA.
All rights reserved.
|
|