How to upgrade OpenSSH in Centos? 1. First you need to install a few dependencies, like development tools or build essentials and the other required packages : [email protected]:~ yum groupinstall "Development Tools" [email protected]:~... Read More
General
How to upgrade PHP to 7.4 in centos 7?    Enter the following commands on the terminal to upgrade PHP:    1 . To install the latest  PHP 7, you need to turn on EPEL and Remi repository.   [email protected]:~# yum install epel... Read More
How to upgrade PHP in centos 7?   Enter the following commands on the terminal to upgrade php: 1. Turn on EPEL repo [email protected]:~#  yum install epel-release 2. Turn on remi-repo ro[email protected]:~#  yum install  http://rpms... Read More
An export script is provided to export the list of all servers and server details into a plain text file appropriate to be imported into Ezeelogin. Â [email protected] ~]#php /usr/local/ezlogin/ezxport.php <output file> [<delimiter>] ... Read More
How to convert putty generated .ppk files to .pem/openssh format Windows - convert a .ppk file to a .pem file Start PuTTYgen. Under Actions, choose Load, and then navigate to your .ppk file. 2. Choose the... Read More
Prevent Putty windows from closing during ssh sessions to view the error messages on the server side. By default, the putty windows will close during ssh if there is any error on the server side without showing the error message as to why the... Read More
 How to install Google authenticator on  Centos/Ubuntu? 1. Add the EPEL repo [email protected]:~ yum install https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm  2. Install Google Authenticator root... Read More
jump server or bastion host release note/change log Do refer the following link in our online manual. https://www.ezeelogin.com/user_manual/ChangeLog.html Read More
We would advise you setup a failover slave node and have an offshore backup ready so that you can easily restore the backup and get rolling in less than 30 minutes. Read More
How to login to the remote server added in Ezeelogin using PuTTY? Â Â Â 1. Open putty, enter Ezeelogin/Jumpserver IP or Hostname, and Port number in specific fields, and click on the Open button. Â Â Â 2. Enter Ezeelogin username and password. ... Read More
Trial License How many servers can i add using a trial license? You can add unlimited servers. All features are available. Do I have to pay for the trial license? No, its free for first 30 days. How long is the... Read More
No, the license would be cached for 3 days on your machine and also the license servers is redundant. Read More
Why is Ezeelogin the most secure ssh gateway available?  SSH User password and security codes are hashed using CRYPT(SHA512, SHA256, BLOWFISH .DES algortithms). So even in the unlikely scenario of the gateway server being rooted, access to all... Read More
How to reset MySQL or MariaDB root password? 1. First you need to stop MySQL or MariaDB server. [email protected]:# service mariadb stop  [email protected]:~#  service mysql stop   2. Start the MySQL/MariaDB server... Read More
Ezeelogin is a secure SSH Jump server software that helps you configure your own custom Linux-based ssh jump server. It is an SSH Jump Server software to secure ssh access of your employees to Linux servers/ devices, Routers, Switches, and Cloud... Read More
No, Ezeelogin is not a hosted solution. You are in control here. You would have to install the software on your server that you intend to use as the ssh gateway, hence better security. Read More
How to install multiple PHP versions in Ubuntu? 1. Run the below command to install PPAÂ and enable the PHP repository. [email protected]Â ~]#Â apt update ; apt install software-properties-common -y ; add-apt-repository ppa:ondrej/php 2. Install... Read More
We had made use of military grade technologies so compromising it is almost impossible. We had made it hard to decipher the critical data even if your Ezeelogin server is rooted. Read More
Yes the upgrade would be seamless. You do not have to reinstall. Read More
Why is Ezeelogin the most secure ssh gateway available? SSH User password and security codes are hashed using CRYPT(SHA512, SHA256, BLOWFISH .DES algortithms). So even in the unlikely scenario of the gateway server being rooted, access... Read More
No, there are no agents that needs to be installed on the remote server or cloud instances that needs to be managed. The only requirement is that you need to have an sshd packages installed and the sshd daemon running on the remote server/instance... Read More
Hardening Authentication in SSH. Enable SSH Key based authentication Disable Password Authentication in sshd configuration file [email protected] :vi /etc/ssh/sshd_config PubkeyAuthentication yes # To disable tunneled clear text passwords,... Read More
Generate report with User Name, Last Login Date and Roles of the Ezeelogin user and view the reports in Excel sheet To display the details such as Ezeelogin Username, Last login at which the user has been logged in, and the Usergroups to... Read More
Re-add a reinstalled remote server 1. Select the reinstalled remote server and Click to reset the ssh fingerprint. As shown below you can see the confirmation 2 . After resetting the SSH fingerprint, you need... Read More
The User Password Lifetime feature lets you set an expiry date for the gateway user password. The user has to set a new password to login again after its expiry. This is useful for organizations to force their employees to reset the password of their... Read More
How to create filters in Ezeelogin while using LDAP or Active Directory (AD) authentication? /Â Does Ezeelogin allow user authentication based on AD or LDAP groups? You can add the filter in Ezeelogin by editing the LDAP or AD configuration under ... Read More
Install node using npm and n module 1. Install npm On centos 7 [email protected]:~ yum install epel-release [email protected]:~ yum install npm On Ubuntu 16/18 and Debian 10 root... Read More
How to migrate the custom server fields and server field values? 1. Take the backup of old Ezeelogin version 7 and untar the backup using the following command: [email protected] :~ sh ezlogin_backup_v7.0... Read More
How to get detailed error messages from Ezeelogin error logs?  Append " log_level trace "  to the config file In order to get detailed error messages from Ezeelogin error logs.  [email protected]:#  vi /usr/local/etc/ezlogin... Read More
It would be required to reduce the size of the Ezeelogin mysql database table serveractivity_logs as it would cause the Ezeelogin software upgrade to slow down significantly ( 2-4 hours ) because of the huge size of the database table.... Read More
We are giving an headsup regarding a vulnerability identified in MariaDB connector. Please be noted that this doesn't affect any of the ezeelogin installation as we don't use this connector in ezeelogin. Recently a very critical vulnerability... Read More
Integrate SSH Public key authentication on Ezeelogin gateway server by exporting the Public Key from Openldap server for a centralized ssh key based authentication 1. First you need to update Openldap LDAP server with a schema... Read More
1. To enable custom server fields for all users , run the following command: [email protected]:~ php /usr/local/ezlogin/ez_queryrunner.php "replace into prefix_preferences (user_id, name, value) select id, ... Read More
How to correct server time in CentOS 6, 7, 8, RHEL 8, Ubuntu 16, 18, 20, Debian 9, 10, SUSE 15   1. How to correct server time in CentOS 6 and 7? [email protected] ~]# yum install ntpdate -y [email protected] ~]# ntpdate pool.ntp.org   2. How... Read More
How many previous passwords can a user use? A user cannot use his last 3 passwords for security reasons. This is the default setting and cannot be changed. User can change their password in Accounts -> Password.  User will get the below... Read More
1.Ezeelogin GUI/ Web interface Login Go to the Ezeelogin web panel installed URL (configured during install) using your web browser. Use the admin username and password that you provided during Ezeelogin installation to login to... Read More
Error login expired. Please login.  This error usually occurs when the server is losing the cookies/session when proxied via Cloudflare/WAF. Make sure that you have appended cookie_match_ip as 0 to the end of  /usr/local/etc/ezlogin/ez.confÂ... Read More
How to configure Web proxy, Web portals, Control Panel, Web panel through Ezeelogin? What is Web proxy and How to configure Web proxy through Ezeelogin Web proxy Web proxy is a feature that lets you access external online portals via reverse proxy on... Read More
Ezeelogin GUI web interface is showing a different time than the system time.  There will be a difference in the time shown in GUI and the system.  If we have not set it manually the time will be the default time, as shown in the following... Read More
Will an Ezeelogin user be suspended if the corresponding user is suspended in Active Directory / LDAP? When you suspend the AD user, the corresponding user in Ezeelogin will not be suspended however, the user will not be able to login into the... Read More
What is web activity log and how to find it? The " Web Activity" log records the functions/operations performed by a user under various sections or tabs in the web gui. The recordings can later be retrieved based on the date & time ... Read More
How to change terminal emulation to vt102 from the database. 1. To change terminal emulation to vt102 for all users, run the below command. [email protected]Â ~]#Â php /usr/local/ezlogin/ez_queryrunner.php "replace into prefix_preferences (user_id,... Read More
The different functions of the webactivity log for the user tab are shown below: 1. Users   Users>Index When you click on the user tab, it will show the below log.   Users>add When a new user is added to Ezeelogin.   Users... Read More
How to login as LDAP user into EZSH shell without accessing the Ezeelogin GUI? LDAP users need to login to Ezeelogin GUI to setup the security code. However, it can be done by enabling Security Code LDAP. If Security Code LDAP is enabled LDAP users... Read More
How to find "Web Activity" logs or how to export Web Activity logs in Ezeelogin? The " Web Activity" log lists what sections and functions each user accessed in the web panel with the date & time. You can search the logs based on user, section,... Read More
How to redirect IP to FQDN with HTTPS in Apache Webserver using mod_rewrite (Ubuntu 18,20,22)? The objective of the article is to rewrite the URL from http://192.168.1.1 to https://server.gateway.com/ezlogin using .htaccess 1. Enable the rewrite... Read More
How to view the password of a server even after granting permissions in Access Control?  Disable Hide Server Details in Settings -> General -> Security to view the password of the server for a user in the non-admin group. Refer below... Read More
Reasons for Account Suspension1. Account suspended due to invalid 2fa or security code: If a user is suspended due to invalid 2fa or security code, you can view the reason for suspension under Users>Edit User as shown below.2. Account locked due... Read More
Enforce password policy or complexity to the Ezeelogin user password Password Minimum length: It is the minimum length of the user password autogenerated by Ezeelogin. The password minimum length can be changed under Settings>General> Security.... Read More
How to list which apache modules are enabled in CentOS/Ubuntu server? Run below command to find the information for apachectl. [email protected] ~]#Â apachectl help [email protected] ~]#Â apachectl -help CentOS/RHEL Run below command to view the list of... Read More
How many types of users are there in Ezeelogin? Â 1. Ezeelogin Gateway User Ezeelogin gateway users are users that are added through Ezeelogin GUI. Refer below screenshot to add Ezeelogin gateway user or refer usermanual. Â 2. Remote SSH User... Read More
Is it possible to manage Ezeelogin users via API?  Unfortunately, it is not possible to manage Ezeelogin Users with the API feature, since there are a lot of risk factors associated with it. We recommend LDAP or Active Directory as the best way... Read More
How to hide server passwords from Ezeelogin users? To prevent the password from being shown, disable the view password feature in Access Control. ( Access-Control->User-Action ) . After disabling the view password feature in Access Control , the... Read More
How to configure timeout values in Ezeelogin? 1. Ezeelogin GUI Timeout Ezeelogin GUI timeout happens when there is no user activity for a particular time in Ezeelogin GUI. Users need to login again with the credentials to the Ezeelogin GUI when a GUI... Read More
How to increase script execution time in Ubuntu and CentOS? Open the php.ini file and change the max_execution_time to 300 seconds (5 minutes). Refer the below step to change script execution time in Ubuntu. Replace the PHP version from the below... Read More
What are KEX and Host Key Algorithms? KEX is the short form of Key Exchange and it is used to exchange the key methods that are used to create the connection between servers. The host key algorithm is a public key algorithm that authenticates an SSH... Read More
How to dump the configuration of the server into a file? The recommended way is to take the entire backup of the Ezeelogin. Refer below article to create a complete backup of Ezeelogin. https://www.ezeelogin.com/kb/article/how-to-create-a-complete... Read More
Role Based Access Control (RBAC) in Ezeelogin Explained Group your staff and your servers into different categories and decide which user or group of users get access to which server or group of servers. Â UserGroup to ServerGroup Enable or disable... Read More
How to record and replay SSH sessions using the script and scriptreplay commands? Install script and scriptreplay using the below command in CentOS/Ubuntu. CentOS/RHEL/Amazon Linux [email protected]Â ~]#Â yum install util-linux -y Ubuntu/Debian root... Read More
What is the best practice for "creating users" in Ezeelogin? The best way to create users in Ezeelogin is to integrate it with OpenLDAP or Windows Active Directory. Refer below articles to integrate it with Ezeelogin. Ubuntu 1. Check out the... Read More
How to integrate Ezeelogin with WAF (Web Application Firewall) like Cloudflare? Append below lines in /usr/local/etc/ezlogin/ez.conf [email protected] ~]# vim /usr/local/etc/ezlogin/ez.conf host_url  http://your_domain_namecookie_match_ip 0 If you... Read More
Recommended SSHD settings in /etc/ssh/sshd_config  OpenSSH server config file.  Run the below command to display all the enabled settings and accepted key types in SSHD. [email protected] ~]# sshd -T | grep -i 'AllowTcpForwarding\... Read More
How to compile and install libssh (1.10.0) and ssh2 (1.3.1) in Ubuntu 18, 20, 22, and Centos 7, 8? 1. Download required packages: [email protected]Â ~]#Â wget https://libssh2.org/download/libssh2-1.10.0.tar.gz [email protected]Â ~]#Â wget https://pecl.php.net... Read More
How to view the authentication logs from Ezeelogin GUI? Login to Ezeelogin GUI -> Users ->Â Authentication Log -> Find Refer below sample screenshots and details of the Authentication Log. 1) When a user fails to login with the incorrect... Read More
Content Security Policy (CSP) in the Ezeelogin web framework explained Content-Security-Policy headers have been updated in the Ezeelogin version 7.29.0. Refer below article to update Ezeelogin to the latest version. Upgrade the Ezeelogin... Read More
List of supported KEX (Key Exchange Algorithm), HostKeyAlgorithms, and PubkeyAcceptedKeyType  in ezsh shell ( Ezeelogin backend shell) Refer the below article to find and modify the KEX and HostKeyAlgorithms in use by the sshd server. KEX and... Read More
How to read SSH key with OpenSSL CLI command? Run the below command to find if the key is readable from the command line of the Linux server. [email protected]:~# openssl pkey -in {path_to_any_private_key} -pubout -text Refer below example of the... Read More
How to extract the Ezeelogin backup file and use it without restoring? 1. Run the below command to list all backup files in /var. [email protected]Â ~]# ls /var/ezlogin_* /var/ezlogin_backup_v7.30.0_b381_p7.2.34-38+ubuntu20.04.1+deb.sury.org... Read More