Description

This article details the operations needed to create an SSH trust between a Linux and a VMS server for the execution of remote commands from Linux to OpenVMS.

Usage example: To perform a clean VMS shutdown initiated by the charon server

Step-by-step guide

• Enable SSH on the VMS server:
  
  

  VMS$ SET DEF SYS$LOGIN VMS$ @TCPIP$CONFIG

• Select then:
  • Option 3 - Server components then enable and start service SSH, option 19

  • then Option 2 - Enable & Start service on this node
    
    

    ... * Create a new default server host key? YES: YES      Creating private key file: TCPIP$SSH_DEVICE:TCPIP$SSH.SSH2]HOSTKEY      Creating public key file: TCPIP$SSH_DEVICE:TCPIP$SSH.SSH2]HOSTKEY.PUB ...

• Generate the key on the Linux server and convert it to be readable by VMS
  
  

  Linux# ssh-keygen -t rsa → Do not specify a passphrase Linux# ssh-keygen -e -f /root/.ssh/id_rsa.pub > /root/.ssh/linuxserver.pub

• Copy the generated file /root/.ssh/linuxserver.pub (or use copy/paste between putty session for example) to the VMS system in the SYS$SYSROOT:[SYSMGR.SSH2] directory
  If this folder does not exist, create it using the following command: $ CREATE /DIRECTORY SYS$SYSROOT:[SYSMGR.SSH2]

• On the VMS system add the Linux server key to the authorized keys:
  
  

  VMS$ SET DEF SYS$SYSLOGIN VMS$ SET DEF SYS$SYSROOT:[.SSH2] VMS$ OPEN/WRITE TMP AUTHORIZATION. If the file already exists, use /APPEND instead of /WRITE VMS$ WRITE TMP "KEY LINUXSERVER.PUB" VMS$ CLOSE TMP

  Do not forget the dot at the end of the authorization file name

• Perform some tests (examples)
  Charon server name "charon", vms system name "pluto":
  
  

  charon# ssh system@pluto "show system /noproc" OpenVMS V7.3-2 on node PLUTO 27-SEP-2013 11:50:14.37 Uptime 0 19:20:07

Links

HP OpenVMS Systems - SSH - Secure Shell

Related articles

• Page:
  OpenSSH and login to Tru64 or OpenVMS systems
• Page:
  Linux and OpenVMS - How to setup an SSH trust