Hardware fortress machine as a springboard machine via VNC manage virtual machine
a demand
- In order to guarantee the security of the network server, the company uses fortress machine as a springboard machine, when you need to access internal servers, according to security issued under different users different resources to achieve flexible control over user access to host and protect the host
Second, the topology of the environment
in which the topology, the host CAS address 172.2.215.114, virtual machine address 172.2.216.110
Third, configuration roadmap - Add a host in the resource
- Add a host in the resource accounts
- Create a user logs on to the host
- Host resources and user authorization will be linked
-
Testing can log
Note: If you use ssh way, VNC server log, you need to click to download the client software on the right side of the fortress machine web page, select the desired client installation.
Fourth, the Configuration step
1, add the host
2, add a hosting account
customers do for client remote access restrictions in the user configuration, such as time, addresses, expiration date.
3, in the authorization host resources and user accounts to be associated with
Five test
1, previously created account to log on using a host
click operation and maintenance - Host login operation and maintenance ----
VI Notes
- When you log via VNC way, the default VNC server account is root, when you add a host account, you will lose a hosting account: 1 as: root, where 1 represents by fortress machine installed VNC service Login Jump VM machines when, VNC port will add 1, if 0: root, using the corresponding virtual machine default VNC port number 5900 log
- If you modify the host information in the VNC port 5910, and the host account using 1: root, actual client initiates the access port is 5911