000031089 - Enable SSH from a console connection if the Operations Console is not available for RSA Authentication Manager 8.x

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Jan 9, 2020
Version 4Show Document
  • View in full screen mode

Article Content

Article Number000031089
Applies ToRSA Product Set: SecurID
RSA Product/ Service Type: Authentication Manager
RSA Version/Condition: 8.x
Issue
  • RSA Authentication Manager 8.x services are down and SSH is needed to copy files to or from the server for investigation (e. g., log files or debug scripts).
  • There may be instances where the Operations Console cannot be opened in a browser due to missing credentials, thus SSH connectivity cannot be enabled to reset the credentials.
Resolution
  1. Open a console connection to the server. If it is a hardware appliance, connect a keyboard and monitor. If it is a virtual machine, open the console from the Hypervisor client.
  2. Login as rsaadmin, then switch to root.


login as: rsaadmin
Using keyboard-interactive authentication.
Password: <enter operating system password>
Last login: Wed Jan  8 17:48:17 2020 from jumphost.vcloud.local
RSA Authentication Manager Installation Directory: /opt/rsa/am
rsaadmin@am81p:~> sudo su -
rsaadmin's password: <enter operating system password>


  1. Run the following command to enable SSH:


am81p:~ # /opt/rsa/am/utils/bin/appliance/configureSSH.sh enable
Shutting down the listening SSH daemon                               done
Checking for missing server keys in /etc/ssh
Starting SSH daemon                                                  done
Saving iptables configuration                                        done
Saving iptables configuration                                        done


  1. Run the following command to disable SSH again, if needed:


am81p:~ # /opt/rsa/am/utils/bin/appliance/configureSSH.sh disable
Shutting down the listening SSH daemon                               done
Saving iptables configuration
Notes See also article 000011851 - Enable SSH via the command line on RSA Authentication Manager 8.x that provides steps to accomplish the same goal using direct Linux commands.
 

Attachments

    Outcomes