Replacing SSH Keys
Alluvio shell accounts are secured by SSH. The SSH private key-public key pair is randomly generated in each Alluvio appliance at the time it is installed. There are no default SSH keys.
The appliance uses the SSH public key to connect to a backup server for running backups. Additionally, the Enterprise NetProfiler uses it for communication between modules.
You can replace an SSH key pair either by regenerating them or by replacing the current pair with a pair obtained from another source.
Regenerating an SSH key pair
To regenerate a key pair,
-
Go to the Administration > Appliance Security > Encryption Key Management page Local Credentials tab.
-
In the row for the shell account of interest, choose the Regenerate Key Pair action.
-
Select View Public Key and observe that it has changed.
On an Enterprise NetProfiler, the new public SSH key is automatically distributed to all modules.
Changing SSH key pair
To change an SSH private key-public key pair,
-
Go to the Administration > Appliance Security > Encryption Key Management page Local Credentials tab.
-
In the row for the shell account of interest, choose the Change Private Key action. This opens a window into which you can paste a new private key.
When you copy the private key from the file where it is stored, be sure to include the header and footer lines:
-----BEGIN RSA PRIVATE KEY-----
MIIEoQIBAAKCAQEAtMUjEKBf5m9hq7mdSasWiYcB2D3qa1mGeRT/7lPkpGbewNrl
...
CeNBbPMkGZONosCnmZvSycY/wFoslx9ozPPG/dRQHGmm7z6Ktw==
-----END RSA PRIVATE KEY-----
-
Paste the key into the window and click OK. This installs the new private key. The private key includes a public key within it, so this authorizes the public key as well.
-
Select View Public Key and observe that it has changed.