Secure Mobile Access 12.4 Administration Guide

Enabling SSH Access from Remote Hosts

Enabling SSH provides an easy way to access the appliance console from another system. You can enable SSH access from your internal or external network. The local SSH server daemon (sshd) listens on port 22 (the well-known port number for SSH).

The default login grace time is now set as 60 seconds, which is a recommended security practice and federal certification requirements. You can override the login grace time by modifying the CEM property SSH_LOGIN_TIMEOUT=<# of seconds>

The Administrator can override the default timeout period based on the security requirements.

To enable SSH access

  1. In the AMC, navigate to System Configuration > Services.

  2. In the Network Services section, click the Configure link under SSH.

  3. To enable SSH, select the Enable SSH checkbox.

  4. To add a host from which you want to enable SSH access, click + icon, type the IP address and subnet mask for the host you want to add, and then click OK.
  5. To add a authorized key for users that you want to allow to access the appliance without a password, click + icon, type the public SSH key, and then click OK.
  6. Click Save.

To delete a host

  1. Select the checkbox to left of any hosts you want to remove.

  2. Click Delete icon, and then click Save.

You can enable SSH access from any host by typing 0.0.0.0 for both the IP address and the subnet mask. Keep in mind, however, that the trade-off for this convenience is decreased appliance security.

To delete a public SSH key

  1. Select the checkbox to left of any public key you want to remove.

  2. Click Delete icon, and then click Save.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.