Gliffy Diagram | ||||
---|---|---|---|---|
|
Teleport is software which provides an SSH Jump Host (or Bastion host) service in a secure, modern way, with support for role-based access control and single sign-on.
...
Show If | |||||
---|---|---|---|---|---|
| |||||
To access any other host, the
You can also set password-less login, as below. | |||||
Show If | |||||
group | ecmwf
Configuring password-less login
Info |
---|
This configuration enables single-hop ssh (using ProxyJump) to LXC or anyother hostECMWF hosts. Not required for ECGATE, CCA/CCB login nodes, Linux physical workstations and Linux VDI. |
Add the Teleport certificate authority to your ~/.ssh/authorized_keys
file, on the relevant system at ECMWF, e.g. ecgate, cca:
Code Block | ||
---|---|---|
| ||
curl -fs https://nexus.ecmwf.int/repository/internal-teleport-configs/prod/teleport_user_ca.pub >> ~/.ssh/authorized_keys |
Note |
---|
On cca/ccb, you will need to load the curl module beforehand. |
Tip |
---|
This configuration will allow access to any host which mounts the same |
Terminal Access in a Web Browser
...