Cisco Cisco Expressway Maintenance Manual
Maintenance
This section describes the pages that appear under the Configuration > Maintenance menu of the Expressway web
interface.
interface.
Enabling SSH access
You may want to enable SSH access to the Expressway so that you can access it securely without requiring
password-based login. One common reason for this is to improve the efficiency of monitoring and logging. You will
need to repeat this procedure on each Expressway that you want to access in this way.
password-based login. One common reason for this is to improve the efficiency of monitoring and logging. You will
need to repeat this procedure on each Expressway that you want to access in this way.
Caution:
You will use root access to authorize your public key. Take care not to increase your security exposure or
cause any unsupported configuration. We strongly discourage using
root
.
1.
Use SSH to log in as
root
2.
Enter
mkdir /tandberg/.ssh
to create
.ssh
directory if it is not already present
3.
Copy your public key to
/tandberg/.ssh
4.
Append your public key to the
authorized_keys
file with
cat /tandberg/.ssh/id_rsa.pub >>
/tandberg/.ssh/authorized_keys
where id_rsa.pub is substituted with the name of your public key. Do not place your key anywhere else
because the key could be lost on upgrade (
because the key could be lost on upgrade (
authorized_keys
file does persist)
5.
Log off and test SSH access using your own key
If you cannot access the Expressway with your key, you may need to connect as
root
and restart the
SSH daemon with
/etc/init.d/sshd restart
Cisco Systems, Inc.
181