SSH Tectia  
Previous Next Up [Contents] [Index]

    About This Document >>
    Installing SSH Tectia Server >>
    Getting Started >>
    Configuration >>
        SSH Tectia Server Configuration Tool >>
            SSH Tectia Server
            General
            Network
            Encryption
            Identity
            Tunneling
            User Authentication
            Password
            Public Key
            Certificates
            CRL Caching
            RSA SecurID
            GSSAPI
            RADIUS
            Host Restrictions
            User Restrictions
            SFTP Server
            Power Users
            License
        Configuration Files >>
        Subconfigurations >>
        Auditing
    Authentication >>
    Application Tunneling >>
    Troubleshooting >>
    Configuration File Reference >>
    Command-Line Tools >>
    Log Messages >>

Identity

The Identity page of the SSH Tectia Server Configuration tool is used to specify the host keys and host certificates that identify the server to the clients.


server-identity-6.gif
Figure : The host key settings

Host key

With the Host Key options you can specify the private and public host key files.

  • Private key

    Click the button on the right-hand side of the text field to change the private host key file. The Select File dialog appears, allowing you to specify the desired file. You can also type the path and filename directly in the text field.

    The default file is hostkey, located in the installation directory. It is highly recommended that the installation directory is only accessible to the administrator.

  • Public key

    Click the button on the right-hand side of the text field to change the public host key file. The Select File dialog appears, allowing you to specify the desired file. You can also type the path and filename directly in the text field. The default file is hostkey.pub, located in the installation directory.

  • Generate

    Click the Generate button to generate a new host key pair. This will launch the ssh_keygen2.exe command-line tool and generate a 1024-bit DSA key pair. If you want to generate some other type of keys, see Appendix ssh-keygen2 for instructions on how to manually generate the key pair.

Host certificate

  • Private key

    Click the ellipsis (...) button to select the private key file associated with the host certificate. The Select File dialog appears, allowing you to specify the desired file. You can also type the path and filename directly in the text field.

    Click the Import button to import a private key stored in the Personal Information Exchange (PFX) format. The Select File dialog appears, allowing you to specify the desired file.

  • Certificate

    Click the ellipsis (...) button to select the host certificate file. The Select File dialog appears, allowing you to specify the desired file. You can also type the path and file name directly in the text field.

    Click the View button to display the current certificate.

Please note all of these should be located on a local drive. Network or mapped drives should not be used, as the server program may not have proper access rights for them.

Server Version String

In the Server Version String field you can specify the character string that will be used as the version string output by the server.

By altering the version string you can mask the identity of the server. This gives added protection against attackers who may use the server's version information to their advantage. On the other hand, hiding the version string may damage the functionality of some clients, as they may use the server version information to determine compatibility.

Previous Next Up [Contents] [Index]


[ Contact Information | Support | Feedback | SSH Home Page | SSH Products ]

Copyright © 2010 SSH Communications Security Corp.
This software is protected by international copyright laws. All rights reserved.
Copyright Notice