Versions Compared

Old Version 1

changes.mady.by.user Pavel Golubnichiy

Saved on

compared with

New Version Current

changes.mady.by.user Pavel Golubnichiy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Warning
iconfalse

You need to restart the PAM.SshProxy.Service service after every change to the configuration file. You can do this in the Task manager, or with powershell command 

Code Block
languagepowershell
Restart-Service PAM.SshProxy.Service -Force
Tip
Компонент Indeed PAM SSH Proxy может быть установлен на выделенный сервер, или на сервер Indeed PAM Gateway.


 Warning
iconfalse
Все URL указываются в нижнем регистреAll URLs are specified in lowercase.
Формат json не допускает наличия комментариев в файле, поэтому необходимо удалить строки, начинающиеся с символов The json format does not allow comments in the file, so you must delete lines beginning with the characters "//"

 Note
iconfalse
пример URL examplehttps://pam.domain.local/pam/coreidp
pam.domain.local - полное DNS имя сервера управления the fully qualified DNS name of the management server
Indeed Identity PAM SSH Proxy component can be installed on a dedicated server or on the Indeed Identity PAM Gateway server.
Перейдите в каталог Go to и отредактируйте файлC:\Program Files\Indeed Identity\Indeed PAM\SSH Proxy \SshProxy folder and edit the appsettings.json file: 
"Settings":
  • CoreUrl - URL адрес Indeed PAM Core URL address
  • IdpUrl -  URL адрес Indeed PAM IdPIdP URL address
  • SshProxySecret - Секрет Secret for PAM SSHProxy component authentication для целей дополнительной аутентификации компонента
     Excerpt Include
    Configuring PAM components
    Configuring PAM componentsConfigurationConfiguration
    nopaneltrue
  • Port - TCP порт для входящих SSH подключений  TCP port for incoming SSH connections
  • TableViewDisplaying a list of resources as a tableTableView - Отображение списка ресурсов в табличном виде
  • HostKeys (ssh-rsa) - Приватный хостовый ключ SSHProxy, генерируется с помощью консольной утилиты Private SSHProxy host key, generate key value with PAM console utility:
     Code Block
    Pam.ConsoleApp.
    exe generate
    exe generate-host-key --size 4096

 Code Block
languagejs
{
  "Settings": {
    "CoreUrl": "https://pam.domain.local/pam/core",
    "IdpUrl": "https://pam.domain.local/pam/idp",
    "SshProxySecret": "2oCbrZHHcgrqtG/I1CK8HUKh3VNo7/MgN21TEC3y8kD0QGAt2GKR0qztapTI+zXEsyNRN+9AO19o+4lKY/yBFA==",
    "Port": 22,
    "TableView": true,

    "HostKeys": {
      "ssh-rsa": "BwIAAACkAABSU0EyABAAAAEAAQAdsHnlTMJQvYOxIluh/6O/+K4loKjKqXDgPDT9XVhtF2tyZsH9wRn5+WXOw3ZGMhDvdH1iT857HaN2CMe53JfJHPgyeSeFxboeWHWPk/fkLYKfZE47hVF1qYfNjuDcbRcsZrkp2Y5P3k9cu8UWHZDPPCUDg3lh1vpfSS1brIUjYvS7wF8NwZ5cvXrTzlYVRl77akD2VGly3TZwgjDj+NgFwGUV1etWlY+c6+QxB4amoLsJVE8ztvBOFG+Y9mVEvJcrxUkYaFTEjOggrfIk0z5BNsCNoW9G/9sGGS4xlZhbktdf1FB1mkRxyWTR1nRCPekrR7u3aiWFAkvljgFhJK4gZkX3SSiIIhiWGWSK8BOu9LrLXiAlPxoijdSrUoj3Na9Wc22VkBpT4KBykYwLjXdo3v6gN2nlUPY0Psa/Zm9iKqRCUODADuToqUCcfXPvKytfWrBqnPTdKqXqJPCPfzCoUGQNC4guwMTjeOE5MyThkbPtWYpFPKeebRH21q8QjxthJ1JcbilGQ2NEMKCgodPpZ8o8D0GuMA5AVHNkf11WiKPoPNzjiFW2bTUdeA0Gkxa9F9/ZEJBlYkREiCGPLgeUe7fWV5P1tr+kPxWiN3gWMw2msxgh9hfkV4gm7VB9osBYDT+JzRd8s3y7iP6KJlpt43zPRc1YJa3osQclew40zeeNwD8nH8Q8/hAIez3CkcZrQ2PRsX/i82owseHD+EP1a/bp5pZx77PtQdQm/4V/52WDWmHt5/ra4x7jaP41kfgT9UrRJkFfJlpQIpnNiYZODoOCoRbNhcdrbcOIMCPVe+SvZFi9o9KF9HbwMi8DU0TUcwFL3HQTjbydUisujFo5jL64cIvTjbShOtrjBr+9H+fkUW/C/P9jpY7nbxR1tAugK4YSElQJscxhmfYAo39SU4Ib6wZURMKwiyCeMFUJOEcSkls0UKeUMBeV4vufqAXIsneVmgGxb5X8liVykIsdR/Fh7eUGh595jwNxtVAtSQRPQDdUsLzJvXED5RTmXdBb6SASoVpJDV0ffOFyB043gOOR3DzXcOQMygizocveHd2afVf1UOSl8vaJCSXf/Jmhg4LdMInFFSD91pACk6WHG4nqIQ3ahcmhk4cwb6Xd5MamVhN38mSw1aS3B00Zz9kmLOopiCxhmAFXXtPsDgNZgrPNWIYFgo53tlIK4ghU2q0CxCaLZ+zTWo3dUKpYsPcchEKr3ZYk/ggpgBdBkL1GiUyHNy8aj11dW50dgn3xb5rA/9CFYysshMYD599rX2VDRqy0lCRmoh3ZS5s0YkqHutSTEZdeJ2wwUkZWJJmPPjzTH2lMs3KOOhHM+mEd692TYQM6KYW6CWpkSAuVBh38t4o1dhsqZ4K0PaT8dhQMZm7A4LmA9yo6gxM0qPHE+cpKiwtUqMNg8T8bTloCmyzaIO/otfOndxbRiLq8BRQNyhdn/kAlQEMeXNR7QxaGmT36i9AnfVAu0LgwqRjqje349/aadJRik8FU4RDPUx/S+cxhvTajsN4dzIgvEtinGhmaIjMNL0Ik9tZxTYH5VudJ6V/IDHmfFaPsHETxAfUxFaT+HT+jgIvPsaqp5B8U+YB8CczItf/WHdbGemSb7RKy7oQ2BiIZAljcp2OKn0ACrwqATLcIFNewz/KJQhSfbbjIWfvFcG3wVsblBJlY/lovHZBQkPwdYGRFA0lCIMHDXENaeve/SxTYMPs31xljC4tVu8QNTJavwfcDYCKzr9WmykV4xbdeJOeyZ9duwJWG7pljS3dvrlVZGwWYWW45Gvlexsrdo3IxNWKaqPYoUhUOHNuHnYh2P35RBhzzhfD1D4nxv4H7ij1WOSNNb2fGLKP4vGqom6S28h1rclxW68svFZROE7k74yv/LDk46ldMVxLvCEHHHixT+tLBabuionptQqNtn7l0qpChmyO/dbba046OCZ8XoEAvfe7hjYmxa8riv1jjiZTJAolLQzRzo47Z7ap/VkcdeTvtN335/X0Ef/RTRquHfWlXqB3XUiictbFQ6YwbN1gMh0rjY4+7DPEFznqgucg+Ueu0mIE6JmrboRt/mLAR8mTFtv5WQpb2Tf7J+cuGLRoONOQ+ELIOyOkCzJBQssHK746FlwuxK5l9t9HsRMw4L6ov/W4km+pgSb/p6QZsHTes5N/+HDgvlVJDNRJoqbn3hEd78J6MA+pIJ9FqNdlI9TB+rwAN6miDD4clwi5MQOSxVRFLCKkzOOYVz2ah2mUnKrG2IH8iYxaj6Td1CYTxoGOhHaDQDlOUWIb4HHpGlTfA7nimrNUuyoTxsMLhKaRDGKgwpbXxuTraTnXN8kj7NBaM5RMFRt3NrTYmCPEc+7EPBLX3HDByu+md36Bzc2EBypGbHY2oX/iCEV/ZIXO3Dv2AOukwKFVt8tjtvBCxKJVbg11d8LdF4mYEy4XYcEt/Se3tAOBDWx362Pi8f9Yv5hPHqse41I3CvC3FimVQzrjDB5Bz/v7lim55bZw6wZ9llvU5iWFi7bl5vvV/0vVXdIjXrsaDHGEJWE/SjbPaR71NPPFkp2HPoRD40Ga1g9XwqznkjU8oiItM/v+WIjdQPGf6ObX7QeHgzltxTJ5MnXmID+Ot0WRFc3FVa7qqpOovJ8l6OKbN7IKoH0NqF+FkMdjA6JzT3MEBpwDs8fgu+7tEr85a6QF5gTHzhWm0cA0SYdtkX8D/DjEZv7sMTr+a+78Kb/j2j5GbslZuob297do7g5d0PgziTAx3Mi93zbpLx768CBhAHdbuwWChE7PyiiHm5yVt6cUleJYA1OC2qvhzR5dDxJJnUUc8zKMqTHpsTZxOzd7ES45hgkUr9bcMmQ6ByWvvHCIlQYpNdea/9n3QN5oIRvy+EKBz8bfnUOtTbAqpMrb2+PfQsUQ2AIP/4pUQxP6nTSzjhsvNHWs3nlh/N80jWeEDrrdYxGosgAe26PAlbW1VAt6I59uKlZ7FJ0Pb+8dLwVgDqDiOneKl7AdxEMluw98rKfeJ3eIvqDEZI5YxhRUzkCUj/1Pgn5k3S8KhVL6NopfR66DMuFZRwsoNdsXMiuvDcVA="
    }
  }
}
После редактирования конфигурационного файла Indeed PAM SSH Proxy перезапустите службу PAM.SshProxy.Service
 Code Block
languagepowershell
C:\>powershell -command "Restart-Service PAM.SshProxy.Service -Force"