Skip to Content

 General

How to upgrade OpenSSH in Centos ?

How to upgrade OpenSSH in Centos?  1. First you need to install a few dependencies, like development tools or build essentials and the other required packages :  root@localhost:~ yum groupinstall "Development Tools" root@localhost:~... Read More

How to upgrade PHP to 7.4 on Centos 7

How to upgrade PHP to 7.4 in centos 7?      Enter the following commands on the terminal to upgrade PHP:      1 . To install the latest  PHP 7, you need to turn on EPEL and Remi repository.     root@gateway:~# yum install epel... Read More

How to upgrade php to 7.2 on Centos

How to upgrade PHP in centos 7?     Enter the following commands on the terminal to upgrade php: 1. Turn on EPEL repo root@gateway:~#  yum install epel-release 2. Turn on remi-repo root@gateway:~#  yum install   http://rpms... Read More

How to export servers ?

An export script is provided to export the list of all servers and server details into a plain text file appropriate to be imported into Ezeelogin.   root@gateway ~]#php /usr/local/ezlogin/ezxport.php <output file> [<delimiter>] ... Read More

How to prevent putty window from closing during ssh

Prevent Putty windows from closing during ssh sessions to view the error messages on the server side. By default, the putty windows will close during ssh if there is any error on the server side without showing the error message as to why the... Read More

How to install and switch different versions of PHP in Ubuntu?

How to install multiple PHP versions in Ubuntu? Installing and switching different versions of PHP is important because different applications and websites require different versions of PHP to function properly. For example, an older website may... Read More

How to convert the ppk files to openssh format

How to convert putty generated .ppk files to .pem/openssh format   Windows - convert a .ppk file to a .pem file   Start PuTTYgen. Under Actions, choose Load, and then navigate to your .ppk file.      2. Choose the... Read More

KEX and Host Key Algorithms in SSH

What are KEX and Host Key Algorithms? KEX is the short form of Key Exchange:  The algorithm is chosen to compute the secret encryption key. Examples would be  diffie-hellman-group-exchange-sha1' and modern 'ecdh-sha2-nistp512'.... Read More

How to install Google authenticator on Centos/Ubuntu?

  How to install Google authenticator on  Centos/Ubuntu? 1.  Add the EPEL  repo root@localhost:~ yum install https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm  2. Install Google Authenticator root... Read More

How to reset mysql or Mariadb root password ?

To reset the MySQL or MariaDB password,  You need to Stop the MySQL/MariaDB service and Start the service with the "--skip-grant-tables" option. Later Connect to the MySQL/MariaDB server and update the password for the user. How to reset MySQL or... Read More

Connect jumpserver using PuTTY

How to login to the remote server added in Ezeelogin using PuTTY?      1. Open putty, enter Ezeelogin/Jumpserver IP or Hostname, and Port number in specific fields, and click on the Open button.      2. Enter Ezeelogin username and password. ... Read More

Redirect IP to Domain Name in Linux

How to redirect IP to FQDN with HTTPS in Apache Webserver using mod_rewrite (Ubuntu 18,20,22)? The objective of the article is to rewrite the URL from http://192.168.1.1 to https://server.gateway.com/ezlogin using .htaccess 1. Enable the rewrite... Read More

Trial License Vs Paid License

  Trial License How many servers can i add using a trial license?  You can add unlimited servers. All features are available.   Do I have to pay for the trial license? No, its free for first 30 days.   How long is the... Read More

Why is Ezeelogin the most secure ssh gateway?

Why is Ezeelogin the most secure ssh gateway available?   SSH User password and security codes are hashed using CRYPT(SHA512, SHA256, BLOWFISH .DES algortithms). So even in the unlikely scenario of the gateway server being rooted, access to all... Read More

What is ezeelogin?

Ezeelogin is a secure SSH Jump server software that helps you configure your own custom Linux-based ssh jump server. It is an SSH Jump Server software to secure ssh access of your employees to Linux servers/ devices, Routers, Switches, and Cloud... Read More

Can the software be compromised?

We had made use of military grade technologies so compromising it is almost impossible. We had made it hard to decipher the critical data even if your Ezeelogin server is rooted. Read More

How to upgrade PHP to 8.1 in Debian?

Upgrade PHP to 8.1 in the Debian 9, 10, and 11 servers 1. Run the below commands in the Debian server rootdebian:~$ apt install -y lsb-release apt-transport-https ca-certificates wget rootdebian:~$ wget -O /etc/apt/trusted.gpg.d/php.gpg https:/... Read More

Is it a hosted solution?

No, Ezeelogin is not a hosted solution. You are in control here. You would have to install the software on your server that you intend to use as the ssh gateway, hence better security. Read More

Why is ezeelogin the most secure gateway?

Why is Ezeelogin the most secure ssh gateway available?   SSH User password and security codes are hashed using CRYPT(SHA512, SHA256, BLOWFISH .DES algortithms). So even in the unlikely scenario of the gateway server being rooted, access... Read More

Set SSH gateway user password lifetime

The SSH Gateway User Password Lifetime feature lets you set an expiry date for the user password. The user has to set a new password to login again after its expiry. This is useful for organizations to force their employees to rotate the password of... Read More

Increase script execution time in Ubuntu and CentOS

How to increase script execution time in Ubuntu and CentOS? Open the php.ini file and change the max_execution_time to 300 seconds (5 minutes). Refer the below step to change script execution time in Ubuntu. Replace the PHP version from the below... Read More

Read ssh key with openssl command in CLI

How to read SSH key with OpenSSL CLI command? Run the below command to find if the key is readable from the command line of the Linux server. root@linux:~# openssl pkey -in {path_to_any_private_key} -pubout -text Refer below example of the... Read More

Record and Replay Linux Commands

How to record and replay SSH sessions using the script and scriptreplay commands? Install script and scriptreplay using the below command in CentOS/Ubuntu. CentOS/RHEL/Amazon Linux root@centos ~]# yum install util-linux -y Ubuntu/Debian root... Read More

How to install node using npm and n module?

 Install node using npm and n module 1. Install npm     On centos 7 root@localhost:~ yum install epel-release root@localhost:~ yum install npm On Ubuntu 16/18 and Debian 10   root@localhost:~  apt... Read More

How does " Web Activity" in Ezeelogin works?

How to find "Web Activity" logs or how to export Web Activity logs in Ezeelogin? The " Web Activity" log lists what sections and functions each user accessed in the web panel with the date & time. You can search the logs based on user, section,... Read More

How to re-add a reinstalled server?

  Re-add a reinstalled remote server 1. Select the reinstalled remote server and Click    to reset the ssh fingerprint.  As shown below you can see the confirmation    2 . After resetting the SSH fingerprint, you need... Read More

Configurations to be enabled in sshd_config

Recommended SSHD settings in /etc/ssh/sshd_config   OpenSSH server config file.   Run the below command to display all the enabled settings and accepted key types in SSHD. root@gateway ~]# sshd -T | grep -i 'AllowTcpForwarding\... Read More

List of supported PubkeyAcceptedKeyTypes in Ezeelogin

List of supported PubkeyAcceptedKeyType, and  KEX (Key Exchange Algorithm), HostKeyAlgorithms  in ezsh shell ( Ezeelogin backend shell) Refer to the below article to find and modify the KEX and HostKeyAlgorithms in use by the sshd server. KEX... Read More

How to get detailed logs from Ezeelogin error logs?

How to get detailed error messages from Ezeelogin error logs?   Append " log_level trace "  to the config file In order to get detailed error messages from Ezeelogin error logs.    root@jumpserver:#  vi /usr/local/etc/ezlogin... Read More

MariaDB Connector Vulnerability CVE-2020-13249

We are giving an headsup regarding a vulnerability identified in MariaDB connector. Please be noted that this doesn't affect any of the ezeelogin installation as we don't use this connector in ezeelogin.  Recently a very critical vulnerability... Read More

Error while logging into Ezeelogin GUI

Error login expired. Please login.   This error usually occurs when the server is losing the cookies/session when proxied via Cloudflare/WAF. Make sure that you have appended cookie_match_ip as 0 to the end of  /usr/local/etc/ezlogin/ez.conf�... Read More

Webproxy, Webpanel, Webportal, Controlpanel

How to configure Web proxy, Web portals, Control Panel, Web panel through Ezeelogin? What is Web proxy and How to configure Web proxy through Ezeelogin Web proxy Web proxy is a feature that lets you access external online portals via reverse proxy on... Read More

Extract Ezeelogin backup file

How to extract the Ezeelogin backup file and use it without restoring? 1. Run the below command to list all backup files in /var. root@gateway ~]# ls /var/ezlogin_* /var/ezlogin_backup_v7.30.0_b381_p7.2.34-38+ubuntu20.04.1+deb.sury.org... Read More

How many previous passwords can a Ezeelogin gateway user use?

How many previous passwords can a gateway user use? Preventing the use of previous  password is an important security compliance requirement.  This can be set under Settings->General-Authentication-> Password/Security Code Retries. If the... Read More

List Apache Modules in Linux

How to list which apache modules are enabled in CentOS/Ubuntu server? Run below command to find the information for apachectl. root@centos ~]# apachectl help root@ubuntu ~]# apachectl -help CentOS/RHEL Run below command to view the list of... Read More

Compile and install mcrypt

How to compile and install mcrypt in SUSE 15? 1.Install the development tools. user@suse ~]# zypper in -y php7-devel gcc gcc-c++ re2c make autoconf automake libtool libmcrypt-devel 2. Download libmcrypt and mcrypt user@suse ~]# wget https:/... Read More

Getting Started with Ezeelogin Jump Server

1.Ezeelogin GUI/ Web interface Login  Go to the Ezeelogin web panel installed URL (configured during install) using your web browser. Use the admin username and password that you provided during Ezeelogin installation to login to... Read More

Hide Server password from users

How to hide server passwords from Ezeelogin users? To prevent the password from being shown, disable the view password feature in Access Control. ( Access-Control->User-Action ) . After disabling the view password feature in Access Control , the... Read More

Access Control Explained

Role Based Access Control (RBAC) Explained   RBAC or Role Based Access Control in SSH is a method to restrict the access of SSH users or server administrators to the remote servers based on their role. Most of the enterprises are having thousands of... Read More

Audit logs and configurations

Audit log policies and configurations 1. SSH Logs The SSH logs provide comprehensive log information about the gateway user's actions or activities during an SSH session. The recorded SSH sessions are saved in text format, allowing for later... Read More

Functions in webactivity logs

The different functions of the webactivity log for the user tab are shown below: 1. Users     Users>Index When you click on the user tab, it will show the below log.     Users>add When a new user is added to Ezeelogin.      Users... Read More

Web Activity Log

How to find detailed Web Activity Log in Ezeelogin?What is web activity log and how to find it? The " Web Activity" log  records  the functions/operations performed by a user under various  sections or tabs  in the web gui. The recordings can... Read More

Change Terminal Emulation to vt102 from Database

How to change terminal emulation to vt102 from the database. 1. To change terminal emulation to vt102 for all users, run the below command. root@localhost ~]# php /usr/local/ezlogin/ez_queryrunner.php "replace into prefix_preferences (user_id,... Read More

Is it possible to login to Ezeelogin with a disabled AD user?

Will an Ezeelogin user be suspended if the corresponding user is suspended in Active Directory / LDAP? When you suspend the AD user, the corresponding user in Ezeelogin will not be suspended however, the user will not be able to login into the... Read More

How to find the reasons for account being suspended?

Reasons for Account Suspension1. Account suspended due to invalid 2fa or security code: If a user is suspended due to invalid 2fa or security code, you can view the reason for suspension under Users>Edit User as shown below.2. Account locked due... Read More

Is it possible to manage Ezeelogin users via API?

Is it possible to manage Ezeelogin users via API? It is not possible to create or remove Ezeelogin users with the API feature since there are a lot of risk factors associated with it. We recommend LDAP or Active Directory as the best way for user... Read More

Different types of Users in Ezeelogin

How many types of users are there in Ezeelogin?   1. Ezeelogin Gateway User Ezeelogin gateway users are users that are added through Ezeelogin GUI. Refer below screenshot to add Ezeelogin gateway user or refer usermanual.   2. Remote SSH User... Read More

Ezeelogin Timeouts Explained

How to configure timeout values in Ezeelogin? 1. Ezeelogin GUI Timeout Ezeelogin GUI timeout happens when there is no user activity for a particular time in Ezeelogin GUI. Users need to login again with the credentials to the Ezeelogin GUI when a GUI... Read More

Integrate Ezeelogin with WAF

How to integrate Ezeelogin with WAF (Web Application Firewall) like Cloudflare? Append below lines in /usr/local/etc/ezlogin/ez.conf root@gateway ~]# vim /usr/local/etc/ezlogin/ez.conf host_url  http://your_domain_namecookie_match_ip 0 If you... Read More

What is the best practice for creating users in Ezeelogin?

What is the best practice for "creating users" in Ezeelogin? The best way to create users in Ezeelogin is to integrate it with OpenLDAP or Windows Active Directory. Refer below articles to integrate it with Ezeelogin. Ubuntu 1. Check out the... Read More

Compile and install libssh and ssh2

How to compile and install libssh (1.10.0) and ssh2 (1.3.1) in Ubuntu 18, 20, 22, and Centos 7, 8? 1. Download required packages: root@gateway ~]# wget https://libssh2.org/download/libssh2-1.10.0.tar.gz root@gateway ~]# wget https://pecl.php.net... Read More

Content Security Policy in Ezeelogin GUI

Content Security Policy (CSP) in the Ezeelogin web framework explained Content-Security-Policy headers have been updated in the Ezeelogin version 7.29.0. Refer below article to update Ezeelogin to the latest version. Upgrade the Ezeelogin... Read More

Change the Ezeelogin database name, username, and password

Is it possible to change the Ezeelogin database name, database username, and database password? No, it is not possible to manually change the Ezeelogin database name, database username, and database password. Run the update script to automatically... Read More

Cluster Explained

Cluster (Master-Slave) explained in Ezeelogin The master-slave setup is for High Availability (HA). Data between the master and slave is replicated in real-time. If the primary node goes down, the Ezeelogin admin user can switch the secondary node... Read More

Switching authentication methods in SSHD

How to enable or disable authentication methods in the SSH Daemon on a Linux server? Password authentication and key-based authentication are two common methods used to access Linux systems securely. Key-based authentication is generally considered... Read More

Privileged access management in Linux

How to login to a remote server as a non-privileged user and escalate privileges in SSH? These two methods will allow the Ezeelogin gateway user to login to a remote server as a non-privileged user and then switch to the root user without prompting... Read More

Enable root privilege for the group in the sudoers file

How to enable root privileges for the wheel/admin group from the sudoers file? The 'wheel group' is a traditional term for a group of users who are granted superuser or administrative privileges. Members of the wheel group have the ability... Read More

Login into the gateway server as a gateway user with bash shell

How to login into the gateway server as a gateway user with Bash shell? 1. Add a gateway user in ezeelogin 2. Change the shell of the gateway user to /bin/bash. root@gateway ~]# chsh -s /bin/bash username eg:  root@gateway ~]# chsh -s /bin/bash... Read More

Reset remote user password and update it in Ezeelogin

How to reset the user password on a remote server and update it in Ezeelogin? How to reset the user password of a remote server and update it? 1. Log in to the remote server and execute the following command. It will prompt you for a password, enter... Read More

DNS load balancing for HA using AWS Route 53

Implementing DNS load balancing in Ezeelogin cluster for high availability (HA) In the following example we will configure the hostname gateway.cloudweg.com to point to the primary node (primary.cloudweg.com/65.0.103.183) using weights in the DNS... Read More

Find base DN and bind RDN from Windows server

How to find base DN and bind RDN from Windows Server 19? This will help the users to integrate Windows Active Directory server to Ezeelogin. 1. Login to Windows server -> Server Manager -> Tools -> Active Directory Administrative Center. 2.... Read More

Create load balancer in AWS for Ezeelogin Cluster

How to create load balancer in AWS for Ezeelogin Cluster setup for HA? 1. Login to the AWS account and search for load balancer with EC2 feature. 2. Create new load balancer. 3. Create Network Load Balancer from the three option. 4. In the basic... Read More

Correct PHP time in different OS

How to correct PHP time in Ubuntu, Debian, Centos, RHEL? This article will help the Linux user to correct the PHP time in different OS. Follow below steps to fix the PHP time. a) Create a PHP page to show up the current time in all OS. root@server ... Read More