Enable SSH Access on the Tenable Virtual Appliance (4.4.x-4.7.x) Last Revised: February 27, 2018

Similar documents
Ross Whetten, North Carolina State University

Bitnami Apache Solr for Huawei Enterprise Cloud

Nagios Core AMI Setup Guide

Power Development Platform Connecting to your PDP system user guide

You can use the WinSCP program to load or copy (FTP) files from your computer onto the Codd server.

Setting up PuTTY. CTEC1767 Data Communications & Networking CTEC1863 Operating Systems CTEC1906 Internet Computing

Using Blackboard Drive to upload/manage content in Blackboard Learn

Bitnami MEAN for Huawei Enterprise Cloud

Power Development Platform Connecting to your PDP system user guide

Bitnami JRuby for Huawei Enterprise Cloud

Retrieve Download File from CSDI Installation Instructions

This document is intended to help you connect to the CVS server on a Windows system.

Locate your Advanced Tools and Applications

LAB :: Secure SHell (SSL)

Deploy the ExtraHop Trace 6150 Appliance

Connect using Putty to a Linux Server

Anvil: HCC's Cloud. June Workshop Series - June 26th

Lab 2: Setting up secure access

Application Note. Configuring SSH on Vocality units. Software From V07_04_01. Revision v1.5

Reset the Admin Password with the ExtraHop Rescue CD

ACE Live on RSP: Installation Instructions

Remote Access to the CIS VLab (308)

Locate your Advanced Tools and Applications

Launching the SafeArchive Amazon Machine Instance

Setting up PuTTY. Version Updated for 2015 Fall (with corrections)

Setting up PuTTY. Software* Downoad PuTTY. Download PuTTY Download the putty.zip file. It contains several programs for SSH, SFTP, and SCP.

The Centrify browser extension

Using.htaccess to Restrict Access to OU Directories

Remote Support 19.1 Web Rep Console

Virtual Machine Connection Guide for AWS Labs

Linking your Adobe Connect recording to your Canvas Course

Click Studios. Passwordstate. Remote Session Launcher. Installation Instructions

Appserv Internal Desktop Access Mac OS Device with Safari Browser. Enter your Appserv username and password to sign in to the Website

SmartCVS Tutorial. Starting the putty Client and Setting Your CVS Password

Installing Cisco StadiumVision Director Software from a DVD

Remote Support Web Rep Console

Firewalls can prevent access to the Unix Servers. Please make sure any firewall software or hardware allows access through Port 22.

Banner eprint Instructions

Immersion Day. Getting Started with Linux on Amazon EC2

Quick Guide 0005C: Installing and Using e-bridge (Secure Messaging) on a Windows PC

Bitnami Ruby for Huawei Enterprise Cloud

Using Citrix to access QFIS and other applications

Flex Linux Masternode with Windows Cold Wallet

Causeway ECM Team Notifications. Online Help. Online Help Documentation. Production Release. February 2016

CHEF MANUAL. Installation and Configuration. SGT, Inc. Innovation Technology Center

Manager Appliance Quick Start Guide

USER MANUAL SafeStick

Load Balancing FreePBX / Asterisk in AWS

Configuring the SMA 500v Virtual Appliance

Enabling Smart Card Logon for Mac OS X Using Centrify Suite

CONFIGURING BASIC MACOS MANAGEMENT: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

ssh and handson Matsuzaki maz Yoshinobu 1

Embedding SoftChalk In Blackboard. SoftChalk Create 9

Azure 209x Practical Exercises Overview

Load Balancing Web Servers with OWASP Top 10 WAF in Azure

Windows Backup Server Installation

Helsinki 19 Jan Practical course in genome bioinformatics DAY 0

An Introduction to Box.com

Quick Note 24. Extracting the debug.txt file from a TransPort. Digi Technical Support. February Page 1

School-to-Home Connection Instructions

Understanding the SkyDrive

LiveNX Upgrade Guide 8.0.x to 8.1.x

Quick Reference Guide Hosting WebEx Meetings

Deploy the ExtraHop Discover 3100, 6100, 8100, or 9100 Appliances

File transfer clients manual File Delivery Services

WinSCP. Author A.Kishore/Sachin

TapRooT VI Software Quick Start Guide

GENERAL NAVIGATION REFERENCE GUIDE FOR BANNER 7.X

MOZILLA FIREFOX (Version 52) EXTENDED SUPPORT RELEASE (ESR) Guidance for Windows PC Patient Portal End Users

Bitnami HHVM for Huawei Enterprise Cloud

MICROSTRATEGY PLATFORM ON AWS MARKETPLACE. Quick start guide to use MicroStrategy on Amazon Web Services - Marketplace

Configuring the WebDAV Folder for Adding Multiple Files to the Content Collection and Editing Them

Application Visibility and Analytics SE Remote Demo Platform Information

Deploy Oracle Spatial and Graph Map Visualization Component to Oracle Cloud

BROWSER-BASED SUPPORT CONSOLE USER S GUIDE. 31 January 2017

Load Balancing Web Servers with OWASP Top 10 WAF in AWS

Rabbit Linux Masternode with Windows Cold Wallet

SharePoint General Instructions

Gnostice StarDocs On-Premises API Virtual Appliance

If you re not using Microsoft Hyper-V 2012, your screens may vary.

ForeScout Extended Module for Tenable Vulnerability Management

Wireless Setup Guide (for Windows XP, Windows Vista, Windows 7 and Mac OSx)

Introduction to Cuda Visualization. Graphical Application Tunnelling on Palmetto

Microsoft Remote Desktop setup for OSX, ios and Android devices

Obtaining Your Network Key. PIXMA MX882 Mac OS

1 Setting Up Your Auto Login Link in Windows

Direct Certification FTP Setup Instructions

1. Download the files VFE2.03GTM.ova and CPRSSetupV1.0.6.exe from the following site:

Deploy the ExtraHop Discover Appliance 1100

Summary. approximately too ). Download and. that appear in. the program. Browse to and

FusionViewer Developer s Guide

Installation. Power on and initial setup. Before You Begin. Procedure

etrac ATOM Android App Setup Guide

ConnectUPS-X / -BD /-E How to use and install SSL, SSH

Load Balancing Nginx Web Servers with OWASP Top 10 WAF in Azure

LiveNX Upgrade Guide from v5.2.0 to v5.2.1

NoMachine NX Client Configuration Guide

Build

CI Financial Exception Dashboard. User Manual

Getting Started Guide 6/1/2017

Transcription:

Enable SSH Access on the Tenable Virtual Appliance (4.4.x-4.7.x) Last Revised: February 27, 2018

Table of Contents Introduction 3 Requirements 4 Terminology 5 Generate the Key File 6 Generate a Key for Windows Operating System 7 Copy Public Key 14 Generate a Key for Mac OS X Operating System 16 Copy Public Key 17 Enable SSH Access on the Tenable Virtual Appliance 19 Establish an SSH Connection 23 Connect to the Appliance from the Windows Operating System 24 Connect to the Appliance from the Mac OS X Operating System 29 Disable SSH Access on the Tenable Virtual Appliance 31

Introduction You may be asked by Tenable Support personnel to collect information from your Tenable Virtual Appliance. You need to collect this information via an SSH connection. By default, SSH access to the Tenable Virtual Appliance is disabled. This document describes how to enable remote SSH access on the Tenable Virtual Appliance, and how to connect using PuTTY on a Windows system or a terminal on Mac OS X. The time required for the below tasks should not exceed 15 minutes. Minimal IT related experience and Tenable product knowledge is required. Tenable recommends that you only enable SSH access when requested during a Support engagement. Please disable SSH access when your engagement is complete.

Requirements In order to complete the instructions below, you need: Network access to the Tenable Virtual Appliance web UI on port 8000. User credentials required to log into the Tenable Virtual Appliance web UI. puttygen.exe and putty.exe for Windows systems.

Terminology Tenable Virtual Appliance A proprietary operating system image provided by Tenable for use with enterprise server deployments. SSH Secure Shell (SSH) is a cryptographic network protocol used to communicate securely between two computers. SSH Key File A unique computer file used in place of a password. Key Passphrase A password that can be used along with your SSH Key File for additional security. PuTTY (putty.exe) A computer application used to initiate SSH connectivity. Puttygen (puttygen.exe) A computer application used to generate a password key file.

Generate the Key File You must generate an SSH key file in order to connect to the Tenable Virtual Appliance using SSH. Generate a Key for Windows Operating System Generate a Key for Mac OS X Operating System

Generate a Key for Windows Operating System 1. Double click the puttygen.exe application. 2. Click the Generate button. 3. Move your mouse around in the blank, gray area to generate randomness for your secure key.

When complete, your Public Key information will be displayed.

4. (Optional) For additional security, in thekey passphrase field, type a passphrase.

5. Click the Save public key button.

6. In the File name field, type a name for the file. For example, appliance_key.txt. 7. Click the Save button.

7. Click the Save private key button.

Note: If you did not provide a key passphrase, a warning message appears. 8. Click the Yes button. 9. In the File Name field, type a file name for the PuTTY Private Key File (.ppk). For example, appliance_key.

10. Click the Save button. You are finished generating your key. Proceed to the Enable SSH Access on the Tenable Virtual Appliance section to complete this setup. Note: You need the public key data to paste into the Tenable Virtual Appliance SSH configuration field. Keep puttygen.exe open in order to copy the key data to copmlete the Enable SSH Access on the Tenable Virtual Appliance section. Copy Public Key While Enabling SSH Access on the Tenable Virtual Appliance, you must provide the textual output for your public key. 1. Right click in the public key field. 2. Click Select All.

3. Right click on the selected text. 4. Click Copy. The key data is now copied and ready to paste in the Enable SSH Access on the Tenable Virtual Appliance section.

Generate a Key for Mac OS X Operating System 1. Click the Terminal icon to launch the terminal. 2. Type ssh-keygen -t rsaat the terminal command prompt. 3. Press the Enter key on the keyboard. 4. Type keyfile. 5. Press the Enter key on the keyboard. 6. (Optional) For additional security, type a passphrase. Note: Typing a key passphrase is optional for additional security. 7. Press the Enter key on the keyboard. The overall output should resemble:

Note: You need the public key data to paste into the Tenable Virtual Appliance SSH configuration field. Keep the terminal window open in order to copy the key data to complete the Enable SSH Access on the Tenable Virtual Appliance section. Copy Public Key While enabling SSH access on the Tenable Virtual Appliance, you need to provide the textual output for your public key. 1. Type cat keyfile.pub at the command prompt in the terminal. 2. Press the Enter key on the keyboard. The output resembles: 3. Highlight the text output. 4. Hold the Ctrl key on the keyboard down and click the selected text.

5. Click Copy. The key data is now copied and is ready to paste in the Enable SSH Access on the Tenable Virtual Appliance section.

Enable SSH Access on the Tenable Virtual Appliance You need the web address and user credentials of your Tenable Virtual Appliance provided by your system administrator. If your system administrator does not provide you with the web address, you can access the Appliance console and retrieve this information. 1. Press the up arrow on the keyboard to highlight Appliance Information. 2. Press the Enter key on the keyboard. The Interface 0 IP Address and web URL are displayed. 3. Double click your web browser icon to open your browser. 4. Type the web URL retrieved in step 2 into your web browser s address bar. Note: Be sure to include the colon ( : ) symbol followed by the port number 8000. 5. Press the Enter key on the keyboard.

6. Click the Log In button. 7. Type the username and password provided by your system administrator. 8. Click the Log In button. Note: The user name is typically admin.

9. Click Applications > SecurityCenter in the top navigation bar. 10. Scroll to the bottom of the page to the SSH User Access section. 11. From the Enable SSH access for the tns user drop-down menu, select True. 12. Right click in the Authorized Public Keys text box. 13. Click Paste. Your previously copied public key pastes into the field.

The output should resemble: 14. Click the Update SSH Configuration button. A banner appears across the page to indicate success. SSH Access is now enabled on the Tenable Virtual Appliance. Next we will establish a connection from your system to the Tenable Virtual Appliance using SSH.

Establish an SSH Connection Connecting to the Appliance from the Windows Operating System Connecting to the Appliance from the Mac OS X Operating System

Connect to the Appliance from the Windows Operating System You need the IP Address of your Tenable Virtual Appliance retrieved in step 3 of the Enable SSH Access on the Tenable Virtual Appliance section. 1. Double click the putty.exe application. 2. In the Host Name field, type the IP Address of your Tenable Virtual Appliance. 3. In the Category side bar, navigate to Connection > SHH > Auth.

4. Click the Browse button. 5. Double click your private key file. Note: The file extension should be.ppk.

6. Click the Open button.

7. If you receive a Security Alert message, click Yes. 8. In the login as: field, type tns.

9. Press the Enter key on the keyboard. Note: If you created a passphrase when you generated the key, you will be asked to type it. The output should resemble: You are now logged on via SSH and may proceed with the commands provided by the Tenable support team.

Connect to the Appliance from the Mac OS X Operating System You need the generated keyfile name defined in step 4 of the Generate the key for Mac OS X Operating System section. You also need the IP Address of your Tenable Virtual Appliance retrieved in step 2 of the Enabling SSH Access on the Tenable Virtual Appliance section. 1. Launch the terminal by clicking the Terminal icon. 2. Type the following command. Replace keyfile with the name of your generated keyfile, and replace 172.204.81.57 with the IP address of your Tenable Appliance. ssh -i keyfile tns@172.204.81.57 3. Press the Enter key on the keyboard. The output resembles:

You are now logged on via SSH and may proceed with the commands provided by the Tenable support team.

Disable SSH Access on the Tenable Virtual Appliance When you have completed the requested steps by Tenable support you can disable SSH access on your Tenable Virtual Appliance. You need the web URL of your Tenable Virtual Appliance retrieved in step 2 of the Enable SSH Access on the Tenable Virtual Appliance section. 1. Double click your web browser icon to open your browser. 2. Type the web URL into your web browser s address bar. Note: Be sure to include the colon ( : ) symbol followed by the port number 8000. 3. Press the Enter key on the keyboard. 4. Click the Log In button.

5. Type the username and password provided by your system administrator. 6. Click the Log In button. Note: The user name is typically admin.

7. Click Applications > SecurityCenter in the top navigation bar. 8. Scroll to the bottom of the page to SSH User Access. 9. From the Enable SSH access for the tns user drop-down menu, select False. 10. Click the Update SSH Configuration button. A banner appears across the page to indicate success. SSH access is now disabled on the Tenable Virtual Appliance.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback