5.14.5 Configure SSH Security(6530)

Getting there

Open a 6530 terminal session.

The steps depend on your user interface mode.

User Interface Mode	Steps
Ribbon or Reflection Browser	With a session open in Reflection, from the Quick Access Toolbar, click .
TouchUx	Tap the Gear icon and then select Document Settings.

Under Host Connection, click Configure SSH Security.

This dialog box is used to set up SSH connections to the NonStop host.

NOTE:For information about creating and editing macros, using file transfer, logging, and other features, see the 6530 Help available on the Session ribbon Help group.

SSH Configuration

This item selects the type of server authentication to use for the connection. Note that you can select multiple types.

Username	Use this field to specify the username on the SSH host. A username is required for all authentication methods.
User Authentication	This area is used to specify the type of authentication used when connecting to the SSH host. Valid choices are: Password: Use Username/Password only to authenticate. Public Key: Use keys only to authenticate. Keyboard Interactive: Use Keyboard Interactive (host prompts for Username/Password). GSSAPI: Use GSSAPI (Username/Passwordand/or keys are not required). If Public Key or Password and Public Key are selected, enter the private key path and file name, or click the Browse button to select it. If the private key file has a password, enter it in the Private key password field. NOTE:If the private key file has a password but it is not entered here, you will be prompted for it when you connect. The password is encrypted in the configuration file. For better security, it is suggested that this field be left blank so that the user must enter the password when connecting.
Encryption	Use this field to specify the encryption strength. Valid choices are: Auto Select: Let the software decide – picks strongest available DES: Use DES encryption Triple DES: Use triple DES encryption AES: Use AES encryption Blowfish: Use Blowfish encryption
Compression	Use this field to specify the compression level to use. The middle of the scale is a good combination of speed and compression. You can leave this set to Auto Select to have the software decide for you.
Banner window	If checked, the greeting message from the host will appear in a separate window instead of on the emulation screen.
Enable logging	If checked, the session is logged to SSHLog.log in the user configuration directory (normally Documents\Micro Focus\Reflection\HPNonStop\Logs). This field is normally left unchecked unless you have problems connecting or during a session, in which case you should turn logging on, reproduce the problem, and send the resulting log file to support to aid in diagnoses.
Port Forwarding	Use port forwarding: If this item is checked, the connection to the host is forwarded through the SSH server to the port specified in the Port field. Port: Enter the port to forward connections to.
Startup Options	Default shell If this option is selected, you will get the default UNIX shell on the system you are connecting to. Execute command If this option is selected, enter the command you wish to execute in the field below. The session will connect, run the command, and close the connection. Run program If this option is selected, enter the program to run in the field below. The session will connect, run the program, and when you exit the program, close the connection.
Inactivity Timeout	Enable inactivity timeout: If this item is left unchecked the inactivity timeout is disabled. Otherwise fill in the field below with the timeout specified in seconds.
Secure File Transfer	Use SFTP Check this item to enable secure file transfers via SSH (SFTP) when using the built-in FTP client.
Host Check	If set to No, all connections are accepted. If set to Yes and the host is not known, then the connection is refused. If set to Ask User, if the host is not yet known the user is prompted as to whether to accept the connection, and whether or not to trust this host in the future.