Product Documentation and Knowledge Base - HomeDocumentation


Charon-SSP


Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 8 Next »

Contents

There are several ways to access the Charon-SSP AWS Instance.

SSH Command-Line Access

During the configuration of your instance you should have created a security group allowing at the minimum SSH access to the instance. If this has been done correctly, you can use SSH from the command-line or from a tool such as PuTTY to access the command-line of the sshuser user on the Charon-SSP instance. If you select your instance in the instance list and then click on Connect, you will see the instructions for connecting via SSH.

In particular, you will see

  • the name of the private key that must be used to connect to the instance, and
  • the public DNS name of the instance.

The following image shows an example:

(warning) Note that the file permissions of the private key file must be set such that the file is only readable by the user. In the example above, the permissions are set to 400. This means that the only access is read-access by the user.

To connect to the instance as the user sshuser, use the following command:

$ ssh -o ServerAliveInterval=30 -i <path-to-your-private key> sshuser@<AWS-public-IP-address>

The parameter ServerAliveInterval will protect the connection from timing out.


Below, you see sample output of a login:

$ ssh -o ServerAliveInterval=30 -i ./we-test-key2.pem sshuser@3.81.64.139
Last login: Tue May 21 05:34:33 2019 from myhost.example.com
[sshuser@ip-172-31-38-252 ~]$ pwd
/home/charon


(warning) Note that this account only allows a very limited subset of commands. In particular, commands that are required to set up an SSH tunnel (e.g., ip, iptables, sysctl) are allowed.

File transfer using SFTP

The SSH security group definition is also used to allow SFTP access to the Charon-SSP AWS instance. This allows file transfers to and from the Charon-SSP AWS instance. The user for file transfers is the charon user.

To connect to the instance as the user charon, use the following command:

$ sftp -i <path-to-your-private-key> charon@<AWS-public-IP-address>


Below you see sample output of a connection:

$ sftp -i ./we-test-key2.pem charon@3.81.64.139
Connected to storage@3.81.64.139.
sftp> ls
media             ssp-snapshot

Connecting with the Charon-SSP Manager

To manage Charon-SSP and the emulated SPARC systems, you must connect to the Charon-SSP AWS instance with the Charon-SSP Manager. The Charon-SSP Manager is the main interface to all important functions of the Charon-SSP software.

Prerequisites:

  • The Charon-SSP Manager must be installed on your local system.
  • For access via the public IP address of the instance:
    • The Security Group on your local system must at least allow SSH access. This allows the built-in SSH tunneling of the Charon-SSP Manger to work. Should you not use SSH tunneling, you must open up additional ports (9091 for the Manager communication, any ports used for the emulated system serial console ports, and ports used for the graphical emulation). However, if the connection runs over the Internet, Stromasys recommends strongly to use SSH tunneling. Otherwise, your Charon-SSP cloud instance and any emulated systems running on it can easily be compromised.
    • Public IP address of the Charon-SSP AWS instance.
  • For access via an SSH-based VPN:

Start the Charon-SSP Manager

Start the Charon-SSP Manager using the following command:

$ /opt/charon-manager/ssp-manager/ssp-manager


This will open the login window of the Charon-SSP Manager.

Login tab of the login window:SSH tab of the login window:

On this tab perform the following steps:

  • Enter the public IP address or the private VPN IP address of your Charon-SSP instance.
  • Enter the Charon-SSP management password (default: stromasys).
  • Enable the SSH tunnel configuration unless you use a connection across a secure VPN.

If using the Manager's integrated SSH tunnel: On this tab perform the following steps:

  • Enter the Charon-SSP user (sshuser).
  • Enter the path to the private key file (click on the three dots to open a file browser),
  • In rare cases, you may need to add the path to the public key on the local system.
  • Enter the passphrase for the private key if required. 
  • Adjust the server port (default 22) if required.

(info) The public key of the AWS keypair can copied from the .ssh/authorized_keys file of the sshuser of the instance

After entering all the required information, click on Connect to connect to the Charon-SSP AWS instance.

If the information is correct, the Charon-SSP Manager welcome screen will be displayed:



<Go to top>

  • No labels


© Stromasys, 1999-2024  - All the information is provided on the best effort basis, and might be changed anytime without notice. Information provided does not mean Stromasys commitment to any features described.