Cisco Cisco Web Security Appliance S670 情報ガイド
How do I setup the SCP log push user key with an
SSH Tectia 4.0 server?
SSH Tectia 4.0 server?
Document ID: 117992
Contributed by Josh Wolfer and Siddharth Rajpathak, Cisco TAC
Engineers.
Engineers.
Jul 17, 2014
Contents
Question
Environment
Solution
Environment
Solution
Question
How do I setup the SCP log push user key with an SSH Tectia 4.0 server?
Environment
Cisco Web Security Appliance (WSA), all versions of AsyncOS.
Solution
Note: This Knowledge Base article references software which is not maintained or supported by Cisco. The
information is provided as a courtesy for your convenience. For further assistance, please contact the software
vendor.
information is provided as a courtesy for your convenience. For further assistance, please contact the software
vendor.
The following information regarding the SSH Tectia server was obtained from
http://www.ssh.com/support/documentation/all/server/4.0/ (Page 51−52).
http://www.ssh.com/support/documentation/all/server/4.0/ (Page 51−52).
Copy the user key that is provided when setting up SCP as the log pushing mechanism.
In the GUI, 'System Administration' tab > 'Log Subscriptions' > 'Accesslogs'.
a.
In the CLI, 'logconfig'.
b.
1.
After clicking 'submit' (or finishing the 'logconfig ' CLI command), you will be presented with the
user public key.
user public key.
2.
Take this key text and save it into a file on the SSH Tectia server.
Please note that the text should be on a single line. If there are carriage returns in the key,
please remove them before saving.
please remove them before saving.
a.
The location to save the file is: ~/.ssh2/<public_key_filename>.
b.
This must be in the home directory of the user that you wish to authenticate using this key.
c.
3.
Create the following file: ~/.ssh2/authorization.
The file should consist of the following information:
Key <public_key_filename>
Key <public_key_filename>
a.
This will tell your SSH Tectia server to use the following key for authentication of the
b.
4.