Versions Compared

Old Version 1

changes.mady.by.user Christina Loher

Saved on

compared with

New Version 2

changes.mady.by.user Emese Pogany

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This article shows how to configure Secure Shell (SSH) access to the device in IGEL OS.

...

Menu path: System > Remote Access > SSH Access

Image Modified

Enable

Include Page

...

_SvIncludePlusContent-_Icon activated

...

_SvIncludePlusContent-_Icon activated

...

 The SSH service is enabled.

Include Page

...

_SvIncludePlusContent-_Icon deactivated

...

_SvIncludePlusContent-_Icon deactivated

The SSH service is disabled. (Default)

If SSH access is enabled, you can configure the following:

Permit empty passwords

Include Page

...

_SvIncludePlusContent-_Icon activated

...

_SvIncludePlusContent-_Icon activated

Logging on without a password is allowed.

Include Page

...

_SvIncludePlusContent-_Icon deactivated

...

_SvIncludePlusContent-_Icon deactivated

...

 Logging on without a password is not allowed. (Default)

Permit administrator logon

Include Page

...

_SvIncludePlusContent-_Icon activated

...

_SvIncludePlusContent-_Icon activated

Logging on as an administrator is allowed.

Include Page

...

_SvIncludePlusContent-_Icon deactivated

...

_SvIncludePlusContent-_Icon deactivated

Logging on as an administrator is not allowed. (Default)

Port number

Port number for SSH. (Default:

...

 22)

User Access

List of configured users.

Info
Unlike root and 

Unlike root and user,

the 

the ruser is not intended for real SSH sessions, but only for starting X applications that are listed below under Applications Access for Remote User “ruser”.

To manage the list:

  • User name

Permitted user

  • Hostname

Name of the host from which SSH access takes place (example: xterm.igel.de)

  • Deny

Include Page

...

_SvIncludePlusContent-_Icon activated

...

_SvIncludePlusContent-_Icon activated

Access is denied.

Include Page

...

_SvIncludePlusContent-_Icon deactivated

...

_SvIncludePlusContent-_Icon deactivated

Access is allowed. (Default)

Info

For ruser a password has to be assigned under under Security > Password. The names root and user work also without passwords. For more information, see Password.


Permit X11 forwarding

Include Page

...

_SvIncludePlusContent-_Icon activated

...

_SvIncludePlusContent-_Icon activated

 X11 forwarding is enabled.

Include Page

...

_SvIncludePlusContent-_Icon deactivated

...

_SvIncludePlusContent-_Icon deactivated

 X11 forwarding is disabled. (Default)

Applications Access for Remote User “ruser”

The ruser is not intended for real SSH sessions, but only for starting X applications configured below. By default these are localshell and are localshell and /config/sessions/setup0.

Info

If you try to log on to the device as ruser

...

 via SSH, then you will never be able to connect. The connection will be closed immediately without anything happening. In this case you must add the parameter "-X" and the program to be started in the session call, like in this example: 

Code Block
languagetext
ssh -X ruser@192.168.10.203 localshell


To manage the list:

Include Page

...

_Manage List

...

_Manage List


Include Page

...

_Clicking Add

...

_Clicking Add

  • Command line

Command that is allowed or prohibited for the remote user

  • Enable application

Include Page

...

_SvIncludePlusContent-_Icon activated

...

_SvIncludePlusContent-_Icon activated

The application given under

...

Command line

...

 may be executed by the remote user. (Default)

Include Page

...

_SvIncludePlusContent-_Icon deactivated

...

_SvIncludePlusContent-_Icon deactivated

...

The application given under

...

Command line

...

 may not be executed by the remote user.