Manualshelf

User`s guide

ManualsBrandsCyclades ManualsNetworkingAlterPath OnBoard
571572573574575576577578579580
Miscellaneous Procedures 531
Administering Security Certificates for HTTPS and SSH on the OnSite
b. Uncomment the lines shown in the following screen example and
make the appropriate changes.
c. Save and quit the file.
d. Restart SSH.
4. On the client, the administrator must do the following:
a. Open the /etc/ssh/ssh_config file for editing.
b. Uncomment t[he lines shown in the following screen example and
make the specified changes.
c. Save and quit the file.
d. Restart SSH.
AllowedCertPurpose sslclient
CACertificateFile /etc/ssh/ca/ca-bundle.crt
HostKey /etc/ssh/ssh_host_key
ChallengeResponseAuthentication
no <--
HostbasedAuthentication no
StrictModes no <--
PasswordAuthentication no <--
PubkeyAuthentication yes
RhostsRSAAuthentication no
RSAAuthentication no
UsePrivilegeSeparation yes
[root@OnSite /root]# daemon.sh restart WEB
AllowedCertPurpose sslserver
Host *
Protocol 2 <--
CACertificate File /etc/ssh/ca/ca-bundle.crt
[root@OnSite /root]# daemon.sh restart WEB