Cisco Cisco Expressway Maintenance Manual
Enabling SSH access
You may want to enable SSH access to the Expressway so that you can access it securely without requiring
password-based login. One common reason for this is to improve the efficiency of monitoring and logging.
You will need to repeat this procedure on each Expressway that you want to access in this way.
password-based login. One common reason for this is to improve the efficiency of monitoring and logging.
You will need to repeat this procedure on each Expressway that you want to access in this way.
CAUTION:
You will use root access to authorize your public key. Take care not to increase your security
exposure or cause any unsupported configuration. We strongly discourage using root.
1. Use SSH to log in as root
2. Enter mkdir /tandberg/.ssh to create .ssh directory if it is not already present
3. Copy your public key to /tandberg/.ssh
4. Append your public key to the authorized_keys file with cat /tandberg/.ssh/id_rsa.pub >>
/tandberg/.ssh/authorized_keys
where id_rsa.pub is substituted with the name of your public key. Do not place your key anywhere else
because the key could be lost on upgrade (authorized_keys file does persist)
where id_rsa.pub is substituted with the name of your public key. Do not place your key anywhere else
because the key could be lost on upgrade (authorized_keys file does persist)
5. Log off and test SSH access using your own key
If you cannot access the Expressway with your key, you may need to connect as root and restart the
SSH daemon with /etc/init.d/sshd restart
SSH daemon with /etc/init.d/sshd restart
Cisco Expressway Administrator Guide (X8.5.2)
Page 214 of 403
Maintenance
Enabling SSH access