Configuring lawful interception ssh

From TBwiki
(Difference between revisions)
Jump to: navigation, search
(Created page with "Toolpack can use the secure FTP (SFTP) protocol to upload IRI records to a remote server. However, it requires SFTP to be used in password-less mode (where servers have been ...")
 
(Needs revising edit)
 
(3 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
Toolpack can use the secure FTP (SFTP) protocol to upload IRI records to a remote server.
 
Toolpack can use the secure FTP (SFTP) protocol to upload IRI records to a remote server.
  
However, it requires SFTP to be used in password-less mode (where servers have been pre-configured for password-less authentication through exchange of private/public SSH keys).
+
For security reasons (such as not storing the SFTP server's password as clear text in the Toolpack MySQL database), '''it requires that SFTP be used in password-less mode'''.
  
Here is the procedure to create and exchange SSH authentication keys.
+
SSH password-less mode is configured by setting-up client server authentication through an exchange of private/public SSH keys.
 +
 
 +
The following procedure describes how to create and exchange SSH authentication keys.
 
*[[password less ssh|Configure password-less SSH login (from or to other servers)]]
 
*[[password less ssh|Configure password-less SSH login (from or to other servers)]]
  
'''IMPORTANT NOTE''': Don't forget to enable password-less SSH on both TMedia hosts, when redundant hosts are used ([[tmedia 1+1|1+1]], [[TMG7800|TMG7800]], or redundant external Toolpack hosts)
+
'''IMPORTANT NOTE''': Remember to enable password-less SSH on both TMedia hosts, when redundant hosts are used ([[tmedia 1+1|1+1]], [[TMG7800|TMG7800]], or redundant external Toolpack hosts)

Latest revision as of 13:44, 8 March 2018

Toolpack can use the secure FTP (SFTP) protocol to upload IRI records to a remote server.

For security reasons (such as not storing the SFTP server's password as clear text in the Toolpack MySQL database), it requires that SFTP be used in password-less mode.

SSH password-less mode is configured by setting-up client server authentication through an exchange of private/public SSH keys.

The following procedure describes how to create and exchange SSH authentication keys.

IMPORTANT NOTE: Remember to enable password-less SSH on both TMedia hosts, when redundant hosts are used (1+1, TMG7800, or redundant external Toolpack hosts)

Retrieved from "https://docs.telcobridges.com/mediawiki/index.php?title=Configuring_lawful_interception_ssh&oldid=25191"
Personal tools