Password management and the different options.
What are the difference between the different types of password management options, namely Automatic, Keep given password and Keep server password while adding in a target server?
1. keep server password - This option lets you add the target server into the Ezeelogin system without a confirmation check on whether the password entered in the form works or not. If you were to give a wrong password the target server would still be added in but you would not be able to login into the target server via the ssh gateway.
This option is normally chosen when you don't know the current password set on the target server but you would not like to change it for adding the system into the ssh gateway. We would recommend you to copy the Servers->Global Key into the target servers /root/.ssh/authorized_keys file so that you would be able to login into the target server via in ssh in ezsh shell.
2. Automatic - If you choose this option while adding in a target server then the password is reset to a new one automatically. The password that is entered in the target server add form is used to login and verify that the password indeed works and is able to login successfully before the target server is added into the system and a new password is auto-generated and set for the target server added in. We would recommend this option for best security as you can reset the password automatically with one click.
3. keep given password - This option lets you preserve the current password set on the server and the password would not be changed on the target server whenever an automatic reset of password across all the target servers is run. The password that is entered in the server add form is used to login and verify that the password indeed works and adds in the target server only if the login succeeds with the given password.
4. One time password- This option lets you enter the corresponding one time password at the password prompt. This is useful when you have servers with OTP authentication where you are to manually enter the random codes.
Note: Make sure to access the Ezeelogin software GUI with 2FA and enable HTTPS to display the remote server password. The following image shows an example of a remote server displaying password in Ezeelogin GUI.