Access SSH for Identity Router Troubleshooting

You can use Secure Shell (SSH) to access the command line and troubleshoot problems related to your identity router. You access SSH using the idradmin account.

SecurID has verified compatibility with these SSH clients:

  • Cygwin:mintty: 3.3.0-1 (OpenSSH_8.3p1-1, OpenSSL 1.1.1f-1)
  • MobaXterm: v20.3
  • PuTTY: 0.74
  • JSch: 0.1.54

Note: You cannot execute su root or su ssouser.

Note: This task does not apply to the identity router embedded in Authentication Manager.

Before you begin

  • You must be a Super Admin for the Cloud Administration Console.
  • You must have sign-in credentials for the Identity Router Setup Console.


  1. Make sure the password has been changed for the Identity Router Setup Console as described in Change the Identity Router Administrator Password Using the Identity Router Setup Console. SSH uses the same password.
  2. Sign in to the Cloud Administration Console.

    If you are unable to access the Cloud Administration Console, you can enable SSH in the Identity Router Setup Console. For more information, see Troubleshooting Identity Router Issues.

  3. Click Identity Routers and then Edit for the identity router. On the Settings tab, verify that identity router port 22 is open.
  4. Sign in to the same network where the identity router is running.
  5. To access the identity router using a supported SSH client, enter:

    ssh idradmin@<idr_managementipaddress>