8.7. Procedure to remote connection to GCap via an SSH tunnel

A - Introduction

This procedure describes how to connect from a remote PC securely using an SSH tunnel.

Remote access to the GCap CLI is achieved via the network connection to the port:

• with the `management` role (dual-interface configuration)

• with the `management-tunnel` role (single interface configuration)

Tip

• If a password error occurs, the protection system will be activated

• To view the policy setting on the Gcap, use the `show bruteforce-protection` command

  After a certain number of failures, the account will be locked

• To unlock it:

  • either wait

  • or use the `system unlock` command with a higher privilege level account

To perform this procedure, you must perform all the steps described in the following sections:

• B - Preliminary operations

• C - Procedure

---

B - Prerequisites

• User: setup, gviewadm, gview

---

B - Preliminary operations

1. Make an initial connection to the GCap (see Procedure to connect directly to the GCap via keyboard and screen)

2. Learn the name of the GCap or its IP address (refer to Procedure to manage the network parameters of `Tunnel` and `Management` interfaces)

---

C - Procedure

• On the remote PC running Linux:

  1. Open a command prompt

  2. Enter the command:

     ssh identifiant@adresse_ip```
     

     For example, `ssh setup@gcenter` where

     • `setup` is the identifier and

     • `IPADDRESS` is the IP address of the GCap's iDRAC port

  3. Validate the command

  4. Enter password of the entered login

  5. Press `Enter` to display all available commands and a short explanation

• On a Windows PC:

  1. Open an SSH client software, such as Putty

  2. Enter the IP address of the GCap then validate

The command prompt is displayed.

[Monitoring DOWN] GCap name (gcap-cli)

Note

• Press `Tab` to display all available commands

• Press `Enter` to display all available commands and a short explanation

---