Chat now with support
Chat with Support

syslog-ng Store Box 6.1.0 - Administration Guide

Preface Introduction The concepts of SSB The Welcome Wizard and the first login Basic settings User management and access control Managing SSB Configuring message sources Storing messages on SSB Forwarding messages from SSB Log paths: routing and processing messages Configuring syslog-ng options Searching log messages Searching the internal messages of SSB Classifying messages with pattern databases The SSB RPC API Monitoring SSB Troubleshooting SSB Security checklist for configuring SSB

Enabling SSH access to the SSB host

Exclusively for troubleshooting purposes, you can access the SSB host using SSH. Completing the Welcome Wizard automatically disables SSH access. To enable it again, complete the following steps:

Caution:

Accessing the SSB host directly using SSH is not recommended nor supported, except for troubleshooting purposes. In such case, the One Identity Support Team will give you exact instructions on what to do to solve the problem.

Enabling the SSH server allows you to connect remotely to the SSB host and login using the root user. The password of the root user is the one you had to provide in the Welcome wizard. For details on how to change the root password from the web interface, see Changing the root password of SSB.

To enable SSH access to the SSB host

  1. Navigate to Basic Settings > Management > SSH settings.

    Figure 62: Basic Settings > Management > SSH settings — Enabling remote SSH access to SSB

  2. Select the Enable remote SSH access option.

    NOTE:

    Remote SSH access is automatically disabled if Sealed mode is enabled. For details, see Sealed mode.

  3. Set the authentication method for the remote SSH connections.

    • To enable password-based authentication, select the Enable password authentication option.

    • To enable public-key authentication, click in the Authorized keys field, click and upload the private keys of the users who can access and manage SSB remotely via SSH.

  4. Click Commit.

    The SSH server of SSB accepts connections only on the management interface if the management interface is configured. If the management interface is not configured, the SSH server accepts connections on the external interface. If possible, avoid enabling the SSH server of SSB when the management interface is not configured. For details on enabling the management connection, see Configuring the management interface.

Changing the root password of SSB

The root password is required to access SSB locally, or remotely via an SSH connection. Note that the password of the root user can be changed from the console menu as well. For details, see Accessing the SSB console.

To change the root password of SSB

  1. Navigate to Basic Settings > Management > Change root password.

    Figure 63: Basic Settings > Management > Change root password — Changing the root password of SSB

  2. Enter the new password into the New root password and Confirm password fields. The password must meet the requirements of the AAA > Settings > Password settings > Minimal password strength option.

    NOTE:

    SSB accepts passwords that are not longer than 150 characters. The following special characters can be used: !"#$%&'()*+,-./:;<=>?@[]^-`{|}

  3. Click Commit.

Sealed mode

When sealed mode is enabled, the following settings are automatically applied:

  • SSB cannot be accessed remotely via SSH for maintenance. Also, configuration settings related to remote SSH access are deleted.

  • The root password of SSB cannot be changed in sealed mode.

  • Sealed mode can be disabled only from the local console. For details, see Disabling sealed mode.

To enable sealed mode use one of the following methods:

  • Select the Sealed mode option during the Welcome Wizard.

  • Navigate to Basic Settings > System > Sealed mode > Activate sealed mode on the SSB web interface and click Enable.

  • Log in to SSB as root using SSH or the local console, and select Sealed mode > Enable from the console menu.

Disabling sealed mode

The following describes how to disable sealed mode.

To disable sealed mode

  1. Go to the SSB appliance and access the local console.

  2. Login as root.

  3. From the console menu, select Sealed mode > Disable.

  4. Select Back to Main menu > Logout.

  5. If you want to access SSB remotely using SSH, configure SSH access. Disabling sealed mode does not restore any previous SSH configuration. For details, see Enabling SSH access to the SSB host.

Related Documents