_____________________________________________________________________
724-746-5500 | b lackb o x.co m
Page 81
To import a configuration, select
File -> Import Preferences
and select the .xml configuration file to
install.
6.7
SDT Connector Public Key Authentication
SDT Connector can authenticate against an SSH gateway using your SSH key pair instead of requiring you
to enter your password. This is known as public key authentication.
To use public key authentication with SDT Connector, first you must add the public part of your SSH key
pair to your SSH gateway:
Make sure the SSH gateway allows public key authentication, this is typically the default
behavior.
If you do not already have a public/private key pair for your client PC (the one running SDT
Connector), generate them now using
ssh-keygen, PuTTYgen
or a similar tool. You may use RSA
or DSA; however, leave the passphrase field blank:
-
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html
-
-
http://sshwindows.sourceforge.net/download/
Upload the public part of your SSH key pair (this file is typically named
id_rsa.pub
or
id_dsa.pub
)
to the SSH gateway, or otherwise add to
.ssh/authorized keys
in your home directory on the SSH
gateway.
Next, add the private part of your SSH key pair (this file is typically named
id_rsa
or
id_dsa
) to
SDT Connector. Click
Edit -> Preferences -> Private Keys -> Add
, locate the private key file, and
click
OK.
You do not have to add the public part of your SSH key pair, the private key calculates it.
SDT Connector will now use public key authentication when connecting through the SSH gateway
(
console server
). You may have to restart SDT Connector to shut down any existing tunnels that were
established using password authentication.
If you have a host behind the
console server
that you connect to by clicking the SSH button in SDT
Connector, you may also want to configure access to it for public key authentication as well. This
configuration is entirely independent of SDT Connector and the SSH gateway. You must configure the
SSH client that SDT Connector launches (for example, Putty, OpenSSH) and the host’s SSH server for
public key authentication. Essentially what you are using is SSH over SSH, and the two SSH connections
are entirely separate.
6.8
Setting up SDT for Remote Desktop access
The Microsoft Remote Desktop Protocol (RDP) enables the system manager to securely access and
manage remote Windows computers—to reconfigure applications and user profiles, upgrade the
server’s operating system, reboot the machine, etc. Black Box’s Secure Tunneling uses SSH tunneling, so
this RDP traffic is securely transferred through an authenticated and encrypted tunnel.