Upgrade OpenSSH in Centos. Overview: This article details how to upgrade OpenSSH in CentOS, including dependencies installation, source download, compilation, installation, verification, and post-upgrade checks for Ezeelogin functionality. 1.�... Read More
General
Upgrade PHP to 7.4 in Centos 7. Overview: This article describes the steps to upgrade the PHP version to 7.4 in Cent os. Enter the following commands on the terminal to upgrade PHP: 1 . To install the latest PHP 7, you need to turn... Read More
PHP upgrade instructions for centOS and amazon linux Overview: This article details how to upgrade PHP on CentOS 7 and Amazon Linux. For CentOS 7, enable EPEL and Remi repos, install yum-utils, and install PHP 7.x. For CentOS 6, migrate to CentOS... Read More
Prevent PuTTY window from closing during an SSH session and display the error message? Overview: This article explains how to prevent PuTTY windows from closing during an SSH session if there is any error on the server side. By default, PuTTY... Read More
How to install multiple PHP versions in Ubuntu? Installing and switching different versions of PHP is important because different applications and websites require different versions of PHP to function properly. For example, an older website may... Read More
How to convert putty generated .ppk files to .pem/openssh format Windows - convert a .ppk file to a .pem file Start PuTTYgen. Under Actions, choose Load, and then navigate to your .ppk file. 2. Choose the... Read More
What are KEX and Host Key Algorithms? KEX is the short form of Key Exchange: The algorithm is chosen to compute the secret encryption key. Examples would be diffie-hellman-group-exchange-sha1' and modern 'ecdh-sha2-nistp512'.... Read More
How to Install OpenLDAP and phpldapadmin in CentOS 7? Overview: This article explains how to install OpenLDAP and phpldapadmin in CentOS 7. Step 1: Install openldap packages. root@centos ~]# yum install openldap openldap-servers openldap... Read More
Install Google Authenticator on Centos/Ubuntu Overview: This article describes how to install Google Authenticator on CentOS/Ubuntu and addresses issues related to the deprecation of the Google Image Charts API affecting QR code generation. 1. ... Read More
Upgrading MariaDB 5.5 to 10.x on CentOS 7: A Step-by-Step Guide Overview: This article describes the process for upgrading MariaDB from version 5.5 to 10.x on CentOS 7, covering backup procedures, repository configuration, and installation steps.... Read More
MySQL/MariaDB Root Password Reset Procedure Overview: This Article provides a comprehensive guide for resetting the MySQL or MariaDB root password. It details how to stop the MySQL/MariaDB service, start it with the --skip-grant-tables option,... Read More
How to Access the Changelog? 1. How to view the changelog? To check the Jump server or Bastion host release notes/change log, refer to the below link from our online manual. Change log You can also check our user manual for feature... Read More
Connecting to a remote server managed by ezeelogin using PuTTY Overview: This article describes how to connect to a remote server managed by Ezeelogin using PuTTY. Step 1. Open PuTTY and enter the Ezeelogin/Jumpserver... Read More
How to force RDP to use TLS Encryption? Overview: This article provides instructions on how to force Remote Desktop Protocol (RDP) to use TLS encryption. Windows Remote Desktop Protocol (RDP) is widely used by system administrators to provide... Read More
How to redirect IP to FQDN with HTTPS in Apache Webserver using mod_rewrite (Ubuntu 18,20,22)? The objective of the article is to rewrite the URL from http://192.168.1.1 to https://server.gateway.com/ezlogin using .htaccess 1. Enable the rewrite... Read More
Upgrade PHP to 8.1 in the Debian 9, 10, and 11 servers 1. Run the below commands in the Debian server rootdebian:~$ apt install -y lsb-release apt-transport-https ca-certificates wget rootdebian:~$ wget -O /etc/apt/trusted.gpg.d/php.gpg https:/... Read More
We would advise you setup a failover slave node and have an offshore backup ready so that you can easily restore the backup and get rolling in less than 30 minutes. Read More
No, the license would be cached for 3 days on your machine and also the license servers is redundant. Read More
Set Up SSH Key Authentication and Turn Off Password Login Overview: This article covers hardening SSH authentication by enabling SSH key-based authentication and disabling password authentication. It involves modifying the /etc/ssh/sshd_config file... Read More
What makes Ezeelogin the most secure SSH gateway available? Overview: This article explains how ezeelogin makes the most secure SSH gateway. 1. SSH User password and security codes are hashed using CRYPT(SHA512, SHA256, BLOWFISH . DES algorithms).... Read More
What is Ezeelogin Overview: Ezeelogin SSH Jump Server software facilitates secure SSH access management with features like 2-factor authentication, session recording, and compliance with major security standards. Ezeelogin is a secure SSH Jump... Read More
What happens if the Ezeelogin license server is not accessible from the gateway server? Overview: This article will help Ezeelogin gateway users to understand how Ezeelogin will operate if it cannot access the license server. Yes, Ezeelogin... Read More
How to increase script execution time in Ubuntu and CentOS? This directive max_execution_time specifies the maximum time in seconds that a PHP script is allowed to run before it’s terminated. Open the php.ini file and change the... Read More
How to removing entries from the serveractivity_logs table in MySQL? Overview: This article explains how to reduce the size of the Ezeelogin serveractivity_logs table. Reducing the size of this table is essential as it would cause the Ezeelogin... Read More
We had made use of military grade technologies so compromising it is almost impossible. We had made it hard to decipher the critical data even if your Ezeelogin server is rooted. Read More
Yes the upgrade would be seamless. You do not have to reinstall. Read More
Is Ezeelogin a hosted solution? Overview: Ezeelogin offers a self-hosted SSH Jump server solution, providing control over installation on your server for enhanced security and customization. Ezeelogin is not a hosted solution. Unlike hosted... Read More
How to migrate the custom server fields and server field values? Overview: This article explains the process of migrating custom server fields and server field values from an older Ezeelogin version 7 to a newer version. It involves creating a... Read More
Why is Ezeelogin the most secure ssh gateway available? SSH User password and security codes are hashed using CRYPT(SHA512, SHA256, BLOWFISH .DES algortithms). So even in the unlikely scenario of the gateway server being rooted, access... Read More
What agents need to be installed on the remote server? Overview: This article explains whether there is a need to install any agents on the remote servers that need to be managed using Ezeelogin. No, there are no agents that need to be installed... Read More
How to read SSH key with OpenSSL CLI command? Run the below command to find if the key is readable from the command line of the Linux server. root@linux:~# openssl pkey -in {path_to_any_private_key} -pubout -text Refer below example of the... Read More
How to record and replay SSH sessions using the script and scriptreplay commands? Install script and scriptreplay using the below command in CentOS/Ubuntu. CentOS/RHEL/Amazon Linux root@centos ~]# yum install util-linux -y Ubuntu/Debian root... Read More
Generate excel report for ezeelogin user details Overview: This Article Provides Instructions for Generating Ezeelogin User Reports: It covers steps for displaying user details, including usernames, last login times, and user groups, and exporting... Read More
Steps to re-add a reinstalled server Overview: This article outlines the steps to re-add a reinstalled server. First, select the reinstalled remote server and reset the SSH fingerprint. After resetting, update the new password in the Server ->... Read More
Installing Node using npm and n Module Overview: This article provides step-by-step instructions for installing npm and the n module on Linux distribution, essential for managing Node versions efficiently. Step 1. Install npm. On centos 7 :... Read More
List of supported PubkeyAcceptedKeyType, and KEX (Key Exchange Algorithm), HostKeyAlgorithms in ezsh shell ( Ezeelogin backend shell) Refer to the below article to find and modify the KEX and HostKeyAlgorithms in use by the sshd server. KEX... Read More
How to create filters in Ezeelogin while using LDAP or Active Directory (AD) authentication? / Does Ezeelogin allow user authentication based on AD or LDAP groups? Overview: The article explains how to add filters to Ezeelogin by editing LDAP or... Read More
How to find "Web Activity" logs or how to export Web Activity logs in Ezeelogin? Overview: The "Web Activity" log provides a detailed record of user interactions with the web panel, including accessed sections and functions, along with date and time... Read More
Getting detailed error messages from Ezeelogin error logs Overview: This article helps Ezeelogin gateway users on how to obtain detailed error messages from Ezeelogin error logs by adding 'log_level' trace to the Ezeelogin configuration... Read More
Recommended SSHD settings in /etc/ssh/sshd_config OpenSSH server config file. Run the below command to display all the enabled settings and accepted key types in SSHD. root@gateway ~]# sshd -T | grep -i 'AllowTcpForwarding\... Read More
How to list which apache modules are enabled in CentOS/Ubuntu server? Run below command to find the information for apachectl. root@centos ~]# apachectl help root@ubuntu ~]# apachectl -help CentOS/RHEL Run below command to view the list of... Read More
How to solve "Error login expired. Please login"? Overview: This article helps in resolving "Error login expired. Please login" issue occured in the Ezeelogin software GUI, which can be resolved by adding cookie_match_ip as 0 to the end of ... Read More
How to configure Web proxy, Web portals, Control Panel, Web panel through Ezeelogin? Overview: This article explains how to configure Web proxy, Web portals, Control Panels, and Web panels through Ezeelogin, detailing their functions and providing... Read More
Role Based Access Control (RBAC) Explained Overview: This article explains how to implement Role-Based Access Control (RBAC) in SSH, detailing how to manage user access to servers, server groups, web portals, and specific actions based on their... Read More
How to fix MariaDB Connector Vulnerability CVE-2020-13249? Overview: This article provides information about a vulnerability identified in the MariaDB connector and the recommended mitigation actions. This vulnerability could potentially allow an... Read More
Get Started with Ezeelogin JumpServer. Overview: This article describes how you can get started with Ezeelogin. 1.Ezeelogin GUI/ Web interface Login Go to the Ezeelogin web panel installed URL (configured during installation) using your web... Read More
How to compile and install mcrypt in SUSE 15? 1.Install the development tools. user@suse ~]# zypper in -y php7-devel gcc gcc-c++ re2c make autoconf automake libtool libmcrypt-devel 2. Download libmcrypt and mcrypt user@suse ~]# wget https:/... Read More
Integrating SSH Public Key Authentication with OpenLDAP on Ezeelogin Overview: This article describes how to integrate SSH public key authentication on an Ezeelogin gateway server by exporting the public key from an OpenLDAP server. It... Read More
How to extract the Ezeelogin backup file and use it without restoring? 1. Run the below command to list all backup files in /var. root@gateway ~]# ls /var/ezlogin_* /var/ezlogin_backup_v7.30.0_b381_p7.2.34-38+ubuntu20.04.1+deb.sury.org... Read More
How to correct server time in CentOS 6, 7, 8, RHEL 8, Ubuntu 16, 18, 20, Debian 9, 10, SUSE 15 Overview: This article describes how to correct server time across CentOS, RHEL, Ubuntu, Debian, and SUSE using ntpdate or chrony, depending on the... Read More
Audit log policies and configurations 1. SSH Logs The SSH logs provide comprehensive log information about the gateway user's actions or activities during an SSH session. The recorded SSH sessions are saved in text format, allowing for later... Read More
Overview of web activity log functions in ezeelogin Overview: This article details the different functions of the web activity log for the user tab in Ezeelogin, including actions such as adding, editing, and deleting users, managing user groups,... Read More
Configuring custom server fields for all users in ezeelogin Overview: This article explains how to enable custom server fields for all users in Ezeelogin. It includes running a PHP command to update user preferences and viewing the custom server... Read More
How to login as LDAP user into EZSH shell without accessing the Ezeelogin GUI? Overview: This article guides admin privileged users on how to use LDAP password as the security code while logging into Ezeelogin backend(ezsh). LDAP users typically... Read More
How to find detailed Web Activity Log in Ezeelogin Overview: This article explains how to enable and retrieve web activity logs for monitoring user operations in various sections of the web GUI, ensuring compliance with security standards such as... Read More
Download HTTP Archive (HAR) Data from Your Browser Overview: This article describes how to export HTTP Archive (HAR) data, which logs detailed performance information about web pages, by using the browser's developer tools to access and save... Read More
Reasons for Account Suspension Overview: This article describes the reasons why an account could be suspended. 1. Account suspended due to invalid 2fa or security code: If a user is suspended due to an invalid 2fa or security code, you can view... Read More
How to change terminal emulation to vt102 in Ezeelogin GUI? Overview: This article helps Ezeelogin gateway users to change the terminal emulation to vt102, both from the Ezeelogin GUI and via the command line. Step 1: To change terminal emulation,... Read More
Synchronizing ezeelogin GUI time with system time Overview: This article addresses the issue of mismatched time display between the Ezeelogin GUI and the system time. The discrepancy often arises due to the default timezone setting in PHP. By... Read More
Managing users in Ezeelogin via API Overview: This article explains how to manage Ezeelogin users via the API for actions such as suspending, unsuspending, and forcing password changes, while noting that user creation and removal are not supported... Read More
Will a user be suspended from Ezeelogin if the corresponding user is suspended in Active Directory / LDAP? Suspending a user account in Windows Active Directory (AD)/LDAP does not suspend the corresponding user account in Ezeelogin however, the user... Read More
How to view the password of a server even after granting permissions in Access Control? Overview: This article explains how to view a server's password by disabling the "Hide Server Details" option in settings, even after permissions have been... Read More
Storing Authentication Hashes Overview: This article describes how UI authentication hashes are stored in the database user table, while SSH authentication hashes are kept in the /etc/shadow file. The UI authentication hash is stored in the... Read More
How to integrate Ezeelogin with WAF (Web Application Firewall) like Cloudflare? Append below lines in /usr/local/etc/ezlogin/ez.conf root@gateway ~]# vim /usr/local/etc/ezlogin/ez.conf host_url http://your_domain_namecookie_match_ip 0 If you... Read More
How to dump the configuration of the server into a file? Overview: This article outlines the steps to dump the server configuration into a file, including creating a full Ezeelogin backup, manually backing up configuration files and the database,... Read More
What is the best practice for "creating users" in Ezeelogin? The best way to create users in Ezeelogin is to integrate it with OpenLDAP or Windows Active Directory. Refer below articles to integrate it with Ezeelogin. Ubuntu 1. Check out the... Read More
Restricting SFTP User Access to Specific Folders in Ezeelogin. Overview: This article addresses how to restrict SFTP users to only view specific folders in Ezeelogin, noting that due to system restrictions, chroot cannot be applied through... Read More
How to compile and install libssh (1.10.0) and ssh2 (1.3.1) in Ubuntu 18, 20, 22, and Centos 7, 8? 1. Download required packages: root@gateway ~]# wget https://libssh2.org/download/libssh2-1.10.0.tar.gz root@gateway ~]# wget https://pecl.php.net... Read More
Cluster (Master-Slave) explained in Ezeelogin The master-slave setup is for High Availability (HA). Data between the master and slave is replicated in real-time. If the primary node goes down, the Ezeelogin admin user can switch the secondary node... Read More
Content Security Policy (CSP) in the Ezeelogin web framework explained Content-Security-Policy headers have been updated in the Ezeelogin version 7.29.0. Refer below article to update Ezeelogin to the latest version. Upgrade the Ezeelogin... Read More
Is it possible to change the Ezeelogin database name, database username, and database password? No, it is not possible to manually change the Ezeelogin database name, database username, and database password. Run the update script to automatically... Read More
How to login to a remote server as a non-privileged user and escalate privileges in SSH? These two methods will allow the Ezeelogin gateway user to login to a remote server as a non-privileged user and then switch to the root user without prompting... Read More
How to reset password in ubuntu? This article provides a step-by-step guide on resetting password in ubuntu using the GRUB bootloader. The process involves booting into single-user mode or recovery mode and then using the command line to reset the... Read More
How to enable or disable authentication methods in the SSH Daemon on a Linux server? Password authentication and key-based authentication are two common methods used to access Linux systems securely. Key-based authentication is generally considered... Read More
How to enable root privileges for the wheel/admin group from the sudoers file? The 'wheel group' is a traditional term for a group of users who are granted superuser or administrative privileges. Members of the wheel group have the ability... Read More
How to reset the user password on a remote server and update it in Ezeelogin? How to reset the user password of a remote server and update it? 1. Log in to the remote server and execute the following command. It will prompt you for a password, enter... Read More
Implementing DNS load balancing in Ezeelogin cluster for high availability (HA) In the following example we will configure the hostname gateway.cloudweg.com to point to the primary node (primary.cloudweg.com/65.0.103.183) using weights in the DNS... Read More
How to login into the gateway server as a gateway user with Bash shell? 1. Add a gateway user in ezeelogin 2. Change the shell of the gateway user to /bin/bash. root@gateway ~]# chsh -s /bin/bash username eg: root@gateway ~]# chsh -s /bin/bash... Read More
How to find base DN and bind RDN from Windows Server 19? This will help the users to integrate Windows Active Directory server to Ezeelogin. 1. Login to Windows server -> Server Manager -> Tools -> Active Directory Administrative Center. 2.... Read More
How to create load balancer in AWS for Ezeelogin Cluster setup for HA? 1. Login to the AWS account and search for load balancer with EC2 feature. 2. Create new load balancer. 3. Create Network Load Balancer from the three option. 4. In the basic... Read More
How to correct PHP time in Ubuntu, Debian, Centos, RHEL? This article will help the Linux user to correct the PHP time in different OS. Follow below steps to fix the PHP time. a) Create a PHP page to show up the current time in all OS. root@server ... Read More
Understanding the format of /etc/shadow file The /etc/shadow file also named the shadow password file is an important part of Linux systems, as it is designed to store user password information securely. The password stored in the shadow file is... Read More
Can we remove the welcome.conf page and replace it with any error page? Overview: This article explains how to configure your web server (Apache or Nginx) to display a "403 Forbidden" error page instead of the welcome page when accessing your domain... Read More