CA API Gateway: Root access over SSH
Article ID: 115124
Updated On:
Products
STARTER PACK-7
CA Rapid App Security
CA API Gateway
Issue/Introduction
How can the Gateway be configured to allow root remote SSH access?
Environment
Release:
Component: APIGTW
Component: APIGTW
Resolution
**The CA API Gateway is a security appliance. It is highly advised that you not allow root remote SSH access**
Should you decide to move forward with this it will be at your own risk.
1. Login to the appliance via SSH using the ssgconfig user
2. You will be presented with the ssgconfig menu, select option 3 (Use a privileged shell) and enter the root password
3. Now that you are at the root prompt edit the sshd_config file
4. Edit the list of allowed users
Should you decide to move forward with this it will be at your own risk.
1. Login to the appliance via SSH using the ssgconfig user
2. You will be presented with the ssgconfig menu, select option 3 (Use a privileged shell) and enter the root password
3. Now that you are at the root prompt edit the sshd_config file
# vi /etc/ssh/sshd_config
3a. Locate the Authentication section and look for the line
PermitRootLogin no
Change this to
PermitRootLogin yes
Save and close the file
3a. Locate the Authentication section and look for the line
PermitRootLogin no
Change this to
PermitRootLogin yes
Save and close the file
4. Edit the list of allowed users
vi /etc/ssh/ssh_allowed_users
Add the root user to this file
Save and close the file
Add the root user to this file
Save and close the file
5. Restart sshd
/etc/init.d/sshd restart
Feedback
Yes
No
Powered by
