- When you
choose Server components from the TCPIP$CONFIG command procedure
Main Menu, as described in
Running the TCPIP$CONFIG Configuration Command Procedure, the Server Components Configuration Menu is
displayed:
HP TCP/IP Services for OpenVMS Server Components Configuration Menu Configuration options: 1 - BIND Disabled Stopped 12 - NTP Disabled Stopped 2 - BOOTP Disabled Stopped 13 - PC-NFS Disabled Stopped 3 - DHCP Disabled Stopped 14 - POP Disabled Stopped 4 - FINGER Disabled Stopped 15 - PORTMAPPER Disabled Stopped 5 - FTP Disabled Started 16 - RLOGIN Disabled Started 6 - IMAP Disabled Stopped 17 - RMT Disabled Stopped 7 - LBROKER Disabled Stopped 18 - SNMP Disabled Started 8 - LPR/LPD Disabled Stopped 19 - SSH Enabled Started 9 - METRIC Disabled Stopped 20 - TELNET Disabled Started 10 - NFS Disabled Stopped 21 - TFTP Disabled Stopped 11 - LOCKD/STATD Disabled Stopped 22 - XDM Disabled Stopped A - Configure options 1 - 22 [E] - Exit menuEnter configuration option:
- Enter option
19 (SSH configuration) at the prompt. The SSH Configuration
Option menu appears.SSH Configuration
Service is defined in the SYSUAF.
Service is defined in the TCPIP$SERVICE database.Service is enabled on specific node.Service is started. SSH configuration options: 1 - Enable service on all nodes 2 - Disable service on this node 3 - Stop service on this node 4 - Disable & Stop service on this node [E] - Exit SSH configurationEnter configuration option:
- Choose the appropriate menu
option from the SSH Configuration Option menu. For example, choose option
1 to enable SSH on this server. The configuration utility creates
the SSH service entry and server configuration file:
Creating SSH Service Entry
Creating TCPIP$SSH_DEVICE:[TCPIP$SSH.SSH]SSHD2_CONFIG.
- Respond to the following
question:
Choose the appropriate menu option from the SSH Configuration Option
menu. For example, choose configuration option 1 to enable SSH on
this server. The configuration utility creates the SSH service entry
and server configuration file:
Create a new default Server host key? [YES]
Creating private key file: TCPIP$SSH_DEVICE:[TCPIP$SSH.SSH2]HOSTKEY
Creating public key file: TCPIP$SSH_DEVICE:[TCPIP$SSH.SSH2]HOSTKEY.PUB
If you type NO to bypass creating new keys, your server may have no
host keys (unless the host keys were created at an earlier time).
You may need to run the key generation utility, SSH_KEYGEN, manually
to generate keys before you can run SSH.
After the SSH server is configured, the following message
and prompt are displayed if, for example, the SSH client is not
enabled and has not been configured:
The SSH CLIENT is not enabled.* Do you want to configure SSH CLIENT [NO]:
Type YES or press Enter to create new host key pair files, HOSTKEY
and HOSTKEY.PUB. TCPIP$CONFIG creates the default key pair in the
directory TCPIP$SSH_DEVICE:[TCPIP$SSH.SSH2].- If you want to configure
the SSH client, type
YES and log in at step 2 in the section
Configuring the SSH Client.
The configuration procedure copies the systemwide configuration
file SSHD2_CONFIG. into the directory TCPIP$SSH_DEVICE:[TCPIP$SSH.SSH2].
The SSHD2_CONFIG. file contains keywords and values
that each server process reads when it starts. The system manager
may want to edit this file to make it host-specific in order to
provide a secure environment for the server host.
 | You must restart the SSH server in order to
use the changes in the SSH configuration files. You can restart
by using the following commands:$ @SYS$STARTUP:TCPIP$SSH_SHUTDOWN.COM
$ @SYS$STARTUP:TCPIP$SSH_STARTUP.COM |
HP TCP/IP Services for OpenVMS Guide to SSH
Configuring the Secure Shell Software
