Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 7 Next »

Contents

General Information

Access to your instance is controlled through several different methods:

  • Firewall of the instance
  • Security list of the subnet to which the instance belongs
  • VNIC-specific Network Security Groups

(info) Note that if both, a security list and a Network Security Group are assigned to a VNIC, the rules of both are combined. Please refer to the Oracle documentation for details.

With the default subnet security list, and without custom Network Security Groups installed, SSH from the command-line or from a tool such as PuTTY can be used to access the command-line of the sshuser user on the Charon-SSP instance. If you select your instance in the instance list and then click on the name, you will see details about your instance including its public IP address as shown below.

To connect to the instance, you need the private key corresponding to the public key uploaded during the launch of the instance.

(warning) The file permissions of the private key file must be set such that the file is only readable by the user.


General Login Steps

To connect to the instance interactively, you must connect as the user sshuser. Use the following command:

$ ssh -o ServerAliveInterval=30 -i <path-to-your-private-key> sshuser@<OCI-public-IP-address>

The parameter ServerAliveInterval will protect the connection from timing out.


Below, you see sample output of a login:

$ ssh -o ServerAliveInterval=30 -i .ssh/mykey.pem sshuser@<public-ip-address>
Last login: Tue May 21 05:34:33 2019 from myhost.example.com
[sshuser@ip-172-31-38-252 ~]$ pwd
/home/sshuser


(warning) Note that this account allows root access to a limited subset of commands (use sudo -i). In particular, commands that are required to create more complex network configurations are allowed.

Setting the Management Password

(warning) Initial management password configuration: before connecting to the Charon-SSW host with the Charon Manager for the first time after the initial installation of your instance you must set the management passwordThis can either be done via the Charon Manager itself (see Connecting with the Charon-SSP Manager) or via the command line as shown below.

Steps to set the management password:

  • Log in to the Charon host using SSH as show above.
  • Become the root user (sudo -i).
  • Change to the Charon Agent utilities directory (cd /opt/charon-agent/ssp-agent/utils).
  • Run the charon-password script (./charon-passwd).
  • Enter and confirm the new management password when prompted.

After this has been completed, you can connect to the host using the Charon Manager with the new management password.

Below, you see sample output of the steps:

$ ssh -i .ssh/mykey.pem  sshuser@<public-ip-address>
[root@ip-172-31-35-32 ~]# cd /opt/charon-agent/ssp-agent/utils
[root@ip-172-31-35-32 utils]# ./charon-passwd
Enter new Charon password:
Retype new Charon password:
Password updated successfully.
Changing password for user charon.
passwd: all authentication tokens updated successfully.
Changing password for user sshuser.
passwd: all authentication tokens updated successfully.
sh: /home/charon/.vnc/passwd: No such file or directory
[root@ip-172-31-35-32 utils]#

  • No labels