Chapter 14: SSH Passthrough Sessions

199

 

 

NOTE: The colon is used to delimit different arguments; however, if a colon is contained within the name, then a double backslash may be used as an escape sequence to include the colon in the name. For example, if the username is “sanders:”, a command to open an SSH session to a target device may look like this:

ssh -p 4122 zone1/sanders\\::zone2/Boston:5@172.26.5.100

2.If a user SSH key has been configured, the session is automatically authenticated based on the key. The user SSH key must be stored on the DSView 3 server specified in step 1.

-or-

When prompted, enter the password for the username. If you enter an incorrect password three times, the login failed event will be generated and the SSH session will be closed.

The user credentials for the target device are validated by the DSView 3 server. If the user is valid, the DSView 3 software database determines the IP address of the appliance and the X.509 certificate for establishing the connection. If the user is invalid, the session closes immediately.

3.If more than one connection exists to the target device, the SSH connection attempt fails and the DSView 3 software informs the user of the failure reason. To connect to a target device with multiple connections, specify the appliance name and port instead of the target device name. The appliance name must be identical to the appliance name in the DSView 3 software database, and the port must be the exact port number that appears in the Units view in the DSView 3 software.

To connect to a target device with multiple connections, open your SSH client and enter the following values in the provided text fields:

<zone1/username>:

<zone2/appliancename>:port@

host name or IP address of the DSView 3 server

To connect to a target device with multiple connections using the Linux or Unix SSH command, enter a command in the following format:

<zone1/username>:<zone2/appliance name:port>@<host name or IP address of DSView

3 server>

4.The SSH client attempts to establish an SSH connection to the appliance or target device. If a successful connection is established, the DSView 3 server acts as a proxy between the user and target device.

If an SSH Passthrough session to the same appliance or target device is already open, your session is shared with the previously connected users. You have read-only access to the session, but you may enter a command to obtain read/write access. See Transferring read/write access on page 202.

5.If the console port on the target device requires additional authentication, the user is prompted to log in.

Page 219
Image 219
Avocent SPC420 manual 199