CA API Gateway: Root access over SSH

Document ID : KB000115124
Last Modified Date : 21/09/2018
Show Technical Document Details
Question:
How can the Gateway be configured to allow root remote SSH access?
 
Answer:
**The CA API Gateway is a security appliance. It is highly advised that you not allow root remote SSH access**

Should you decide to move forward with this it will be at your own risk.


1. Login to the appliance via SSH using the ssgconfig user
2. You will be presented with the ssgconfig menu, select option 3 (Use a privileged shell) and enter the root password
3. Now that you are at the root prompt edit the sshd_config file
# vi /etc/ssh/sshd_config

3a. Locate the Authentication section and look for the line

PermitRootLogin no

Change this to 

PermitRootLogin yes

Save and close the file


4. Edit the list of allowed users
vi /etc/ssh/ssh_allowed_users

Add the root user to this file

Save and close the file
5. Restart sshd 
/etc/init.d/sshd restart