Chat now with support
Chat with Support

Safeguard Authentication Services 4.1.5 - Management Console for Unix Administration Guide

One Identity Privileged Access Suite for Unix Introducing One Identity Management Console for Unix Installing Management Console for Unix Preparing Unix Hosts Working with Host Systems Managing Local Groups Managing Local Users Active Directory Integration Authentication Services Integration Privilege Manager Integration Reporting Setting Preferences Security Troubleshooting Tips
Auto Profile Issues Active Directory Issues Auditing and Compliance Cannot Create a Service Connection Point Check Authentication Services Agent Status Commands Not Available CSV or PDF Reports Do Not Open Database Port Number Is Already in Use Elevation Is Not Working Hosts Do Not Display Import File Lists Fakepath Information Does Not Display in the Console Java Applet Failures License Info in Report is not Accurate Out of Memory Error Post Install Configuration Fails on Unix or Mac Privilege Manager Feature Issues Profile Task Never Completes questusr Account was Deleted Readiness Check Failed Recovering From a Failed Upgrade Reports Are Slow Reset the Supervisor Password Running on a Windows 2008 R2 Domain Controller Service Account Login Fails Setting Custom Configuration Settings Single Sign-on (SSO) Issues JVM Memory Tuning Suggestions Start/Stop/Restart Management Console for Unix Service Tool Bar Buttons Are Not Enabled UID or GID Conflicts
System Maintenance Command Line Utilities Web Services Database Maintenance

SSH to Host

Management Console for Unix provides an SSH Java Applet console which can be used to access a managed host directly.

To SSH to host

  1. Select a managed host from the All Hosts view and click the SSH to Host tool bar button or right-click the host name and choose SSH to Host.

    The first time you use the SSH to Host command, it checks to see if you have Java installed and then it sets up a home directory, a known hosts directory and adds this host to your set of known hosts:

    1. Click Install at the Security Warning to indicate that you want to install this software.

      It downloads a terminal applet, which can take several seconds. When you initialize the applet, the browser checks for an available JRE. If the browser detects that a JRE is not installed, it prompts you to install one. You must install the Sun JRE, which can take several minutes, before the applet initializes. After you have successfully installed Java, click Close and restart the browser.

    2. If the MindTerm home directory does not exist, a MindTerm - Confirmation dialog prompts you to create it. Click Yes to create the MindTerm home directory.
    3. If the known hosts directory does not exist, a MindTerm - Confirmation dialog prompts you to create it. Click Yes to create the hostkey directory; or, No to close the applet.
    4. A third MindTerm - Confirmation dialog prompts you add this host to your set of known hosts. Click Yes to add the selected host to your set of known hosts and accept the fingerprint.

    The terminal session opens.

    Note: If it does not open, see Java Applet Failures for information about troubleshooting SSH to Host issues.

  2. At the login prompt, enter the user credentials to access the selected host.

    Note: It retrieves the host's credentials from the session or persistent cache if they are present; therefore, the login prompt screen may not display. However, if you want to always be prompted for credentials, select the Always prompt for credentials to access host from SSH terminal in User Preferences. This allows you to use different credentials than the ones that are stored in the session or persistent cache. (See SSH Terminal Access to Host for details.)

Import SSH Host Key

You can upload a new SSH key and replace the one that is cached for a host on the server by importing an SSH host key.

To import SSH host key

  1. Select a managed host from the All Hosts view and click the Import SSH Host Key tool bar button.
  2. At the Import SSH host key from file dialog, browse to select an SSH host key file.

    (See Known_hosts File Format for details.)

For more information, see Managing SSH Host Keys.

Managing Local Groups

The profiling operation imports system information about the local groups so you can remotely manage them through the mangement console.

A host's properties contains a Groups tab, from which you can manage the local groups.

The topics in this section step you through the local group management tasks you can perform from the Groups view. For a detailed description of these tasks, please refer to the online help.

Add Local Group

You can use the mangement console to remotely add a local group to the host.

Note: This topic instructs you to set up a local group by the name of "localgroup" referred to by other examples in this guide.

To add a local group to the host

  1. From the All Hosts view, double-click a host name to open its properties.
  2. Select the Groups tab and click Add Group.
  3. In the Add New Group dialog, enter localgroup as a local group name in the Group Name box and click Add Group.
  4. In the Log on to Host dialog, enter your credentials and click OK.

    Note: This task requires elevated credentials. Credential information is entered by default from the cache.

    The new local group account is added to the system and mangement console.

Related Documents