This article shows how to configure Secure Shell (SSH) access to the device in IGEL OS.
...
Menu path: System > Remote Access > SSH Access
Enable
Include Page |
---|
...
|
...
|
...
The SSH service is enabled.
Include Page |
---|
...
|
...
|
The SSH service is disabled. (Default)
If SSH access is enabled, you can configure the following:
Permit empty passwords
Include Page |
---|
...
|
...
|
Logging on without a password is allowed.
Include Page |
---|
...
|
...
|
...
Logging on without a password is not allowed. (Default)
Permit administrator logon
Include Page |
---|
...
|
...
|
Logging on as an administrator is allowed.
Include Page |
---|
...
|
...
|
Logging on as an administrator is not allowed. (Default)
Port number
Port number for SSH. (Default:
...
22)
User Access
List of configured users.
Info |
---|
Unlike root and Unlike root and user, thethe ruser is not intended for real SSH sessions, but only for starting X applications that are listed below under Applications Access for Remote User “ruser”. |
To manage the list:
User name
Permitted user
Hostname
Name of the host from which SSH access takes place (example: xterm.igel.de
)
Deny
Include Page |
---|
...
|
...
|
Access is denied.
Include Page |
---|
...
|
...
|
Access is allowed. (Default)
Info |
---|
For |
Permit X11 forwarding
Include Page |
---|
...
|
...
|
X11 forwarding is enabled.
Include Page |
---|
...
|
...
|
X11 forwarding is disabled. (Default)
Applications Access for Remote User “ruser”
The ruser
is not intended for real SSH sessions, but only for starting X applications configured below. By default these are localshell
and are localshell
and /config/sessions/setup0
.
Info |
---|
If you try to log on to the device as ruser |
...
via SSH, then you will never be able to connect. The connection will be closed immediately without anything happening. In this case you must add the parameter "-X" and the program to be started in the session call, like in this example:
|
To manage the list:
Include Page |
---|
...
|
...
|
Include Page |
---|
...
|
...
|
Command line
Command that is allowed or prohibited for the remote user
Enable application
Include Page |
---|
...
|
...
|
The application given under
...
Command line
...
may be executed by the remote user. (Default)
Include Page |
---|
...
|
...
|
...
The application given under
...
Command line
...
may not be executed by the remote user.