Versions Compared
Key
- This line was added.
- This line was removed.
- Formatting was changed.
| Warning | ||
|---|---|---|
| ||
You need to restart the PAM.SshProxy.Service service after every change to the configuration file. You can do this in the Task manager, or with powershell command | ||
| Tip | ||
| Компонент Indeed PAM SSH Proxy может быть установлен на выделенный сервер, или на сервер Indeed PAM Gateway. |
| Warning | ||
|---|---|---|
| ||
Все URL указываются в нижнем регистреAll URLs are specified in lowercase. Формат json не допускает наличия комментариев в файле, поэтому необходимо удалить строки, начинающиеся с символов The json format does not allow comments in the file, so you must delete lines beginning with the characters "//" |
| Note | ||
|---|---|---|
| ||
пример URL example: https://pam.domain.local/pam/coreidp |
Indeed PAM SSH Proxy component can be installed on a dedicated server or on the Indeed PAM Gateway server.
Перейдите в каталог Go to C:\Program Files\Indeed\Indeed PAM\SSH Proxy\SshProxy и отредактируйте файлSshProxy folder and edit the appsettings.json file:
"Settings":
- CoreUrl - URL адрес Indeed PAM Core URL address
IdpUrl - URL адрес Indeed PAM IdPIdP URL address
SshProxySecret - Секрет Pam SSHPtoxy Secret for additional component authentication purposes для целей дополнительной аутентификации компонента
Excerpt Include Configuration Configuration nopanel true - Port - TCP порт для входящих SSH подключений TCP port for incoming SSH connections
- TableView - Displaying a list of resources as a tableTableView - Отображение списка ресурсов в табличном виде
HostKeys (ssh-rsa) - Приватный хостовый ключ Private SSHProxy host key, generate key value with PAM console utility:SSHProxy, генерируется с помощью консольной утилиты
Pam.ConsoleApp.exe generate-host-key --size 4096
| Code Block | ||
|---|---|---|
| ||
{
"Settings": {
"CoreUrl": "https://pam.domain.local/pam/core",
"IdpUrl": "https://pam.domain.local/pam/idp",
"SshProxySecret": "2oCbrZHHcgrqtG/I1CK8HUKh3VNo7/MgN21TEC3y8kD0QGAt2GKR0qztapTI+zXEsyNRN+9AO19o+4lKY/yBFA==",
"Port": 22,
"TableView": true,
"HostKeys": {
"ssh-rsa": "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"
}
}
} |
После редактирования конфигурационного файла Indeed PAM SSH Proxy перезапустите службу PAM.SshProxy.Service
| Code Block | ||
|---|---|---|
| ||
C:\>powershell -command "Restart-Service PAM.SshProxy.Service -Force" |