How to transfer Ezeelogin SSH session logs recorded to a remote server ?

Transfer Ezeelogin SSH session logs recorded to a remote server

1. Create a Linux system user on the remote server to which  the ssh session log files has to be transferred.  

You can skip this step if a Linux system user already exists on the remote machine

 
   Add user with the following command. You can replace the username "backup-user"  with username of your choice.

root@remote-server:~#useradd backup-user

   
2. Setup SSH-KEY based authentication for passwordless authentication
   

 a. Create a ssh key pair on the server using the following  command on the Jumpserver.

root@jumpserver:~# ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
SHA256:eUKBEdUlDVzQgCKT3QHBVwHHCH0IjWa8cDdNkRBrvZM root@ipa.server.com
The key’s randomart image is:
---[RSA 2048]----
|     =B#B/@%o    |
|    = @ @=B.o    |
|     B = o.      |
|      .o . o     |
|        S E      |
|         o .     |
|                 |
|                 |
|                 |
----[SHA256]-----

 Now, the public key has been saved in the file /root/.ssh/id_rsa.pub and private key in /root/ssh/id_rsa

b. Paste the public key in the remote server users "backup-user" authorized key file.

root@remote-server:~# vi /home/backup-user/.ssh/authorized_keys

ssh-rsa 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

So that you can  ssh to remote server from the Jumpserver without password

 

3.  Copy/sync logs from Ezeelogin Jumpserver to the remote server using rsync command.

    

root@jumpserver:~# rsync -av /var/log/ezlogin  backup-user@10.10.10.1:/home/backup-user/ 

 

If you want to copy a ssh user log file to the remote server,  use the following command 

root@jumpserver:~# rsync -av /var/log/ezlogin/full/ezadm622/acer~test.centos2.com  backup-user@10.10.10.1:/home/logs/

0 (0)
Article Rating (No Votes)
Rate this article
    Attached Files
    There are no attachments for this article.
    Related Articles RSS Feed
    Is it possible to disable security codes in ssh gateway?
    Viewed 1690 times since Wed, Jan 31, 2018
    What are the details transmitted to the license server? What is the size of data transmitted?
    Viewed 1727 times since Mon, Aug 21, 2017
    How to view the Help Menu in the ezsh backend shell?
    Viewed 2009 times since Thu, Nov 23, 2017
    Configure ssh certificate based authentication
    Viewed 656 times since Fri, Apr 17, 2020
    How to enable Public key based authentication and Allow root login in SSHD
    Viewed 1861 times since Fri, Dec 8, 2017
    Installing Jump server or Bastion host on a linux host in Google or AWS instance ?
    Viewed 20197 times since Thu, Sep 21, 2017
    How to find the ssh jumphost software version that is being run?
    Viewed 1946 times since Thu, Mar 1, 2018
    How to grant Parallel Shell privilege for a user?
    Viewed 4124 times since Wed, Nov 22, 2017
    What are the security measures to ensure data security?
    Viewed 1761 times since Mon, Aug 21, 2017
    LICENSE ERROR: Could not resolve host: license.ezeelogin.com
    Viewed 69 times since Sat, Sep 26, 2020