Table of Contents
Advertisement
Services
Use SSH with key authentication
Rather than using passwords, you can use SSH keys to authenticate users connecting via SSH, SFTP,
or SCP. SSH keys provide security and scalability:
Security: Using SSH keys for authentication is more secure than using passwords. Unlike a
n
password that can be guessed by an unauthorized user, SSH key pairs provide more
sophisticated security. A public key configured on the IX30 device is paired with a private key
on the user's PC. The private key, once generated, remains on the user's PC.
Scalability: SSH keys can be used on more than one IX30 device.
n
Generating SSH key pairs
On a Microsoft Windows PC, you can generate SSH key pairs using a terminal emulator application,
such as PuTTY or Tera Term.
On a Linux host, an SSH key pair is usually created automatically in the user's .ssh directory. The
private and public keys are named id_rsa and id_rsa.pub. If you need to generate an SSH key pair,
you can use the ssh-keygen application.
For example, the following entry generates an RSA key pair in the user's .ssh directory:
ssh-keygen -t rsa -f ~/.ssh/id_rsa
The private key file is named id_rsa and the public key file is named id_rsa.pub. (The .pub extension
is automatically appended to the name specified for the private key output file.)
Required configuration items
Name for the user
n
SSH public key for the user
n
Additional configuration items
If you want to access the IX30 device using SSH over a WAN interface, configure the access
n
control list for the SSH service to allow SSH access for the External firewall zone.
Web
1. Log into Digi Remote Manager, or log into the local Web UI as a user with full Admin access
rights.
2. Access the device configuration:
Remote Manager:
a. Locate your device as described in
device.
b. Click the Device ID.
c. Click Settings.
d. Click to expand Config.
IX30 User Guide
Use SSH with key authentication
Use Digi Remote Manager to view and manage your
504
Advertisement
Table of Contents
