HPE 9000 and HPE e3000 Servers
cancel
Showing results for 
Search instead for 
Did you mean: 

GSP port and SSH

 

GSP port and SSH

I am using SSH to connect to the HP9000 server instead of telnet (using plain passwords). But the customer wonders if SSH can also be used to connect to the GSP port as well. We are still using telnet to connect to the GSP port and this is still not a secure connection
NFS/CIFS error
5 REPLIES 5
Massimo Bianchi
Honored Contributor

Re: GSP port and SSH

Hi,
AFAIK the telnet is the only supperted methid, because the lanconsole have a lightweight server listening to the telnet port, using telnet protocol.

If you want a secure connection, you can think of the Secure Web Console, that can support https.

HTH,
Massimo
Jeff Schussele
Honored Contributor

Re: GSP port and SSH

At this time the GSP/console ports - both LAN & serial - only support telnet connections. This may change in the future, but for now it's telnet only.

As Massimo points out you could use the Secure Web Console, but we've found these to be problematic i.e. the tend to lock up frequently & require a higher level of admin than the standard ports.

We isolate our std ports on private subnets that require authentication to gain access to boost our security level.

Rgds,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
Karthik S S
Honored Contributor

Re: GSP port and SSH

It is not possible to use SSH to connect to the GSP. Only alternative could be using the serial consoles.

-Karthik S S
For a list of all the ways technology has failed to improve the quality of life, please press three. - Alice Kahn
Joshua Scott
Honored Contributor

Re: GSP port and SSH

HP does recommend that the GSP connections be on a separate network for security purposes. What model of server do you have? some have 'secure web console' built in.

-Josh
What are the chances...
Bill Hassell
Honored Contributor

Re: GSP port and SSH

Secure Shell (ssh) requires a *significant* amount of code to implement. In HP-UX this is just disk space but for the web consoles (built-in or external) all the code must fit on EPROMs or NVRAM. The use of a secure network for consoles is a good idea for any compter systems. That network would then be protected with a locked down router or bertter yet, a VPN. Alternatively, you could get a very inexpensive managment system (an old HP-UX server perhaps or a Linux box) that runs ssh and place it on the management LAN. The router would prevent all access except ssh to the management box.


Bill Hassell, sysadmin