How to configure Ezeelogin to use SSL for MySQL database connections on ubuntu 16.04? Overview: This article gives step by step instructions to configure Ezeelogin to use SSL for MySQL database conneections on ubuntu 16.04. Mysql - SSL setup on... Read More
Tweaks & Configuration
Integration of OpenLdap / Activedirectory (with autocreate feature) [Frontend] You can configure LDAP/AD with autocreate feature. You can use this if you are using LDAP authentication and do not plan to use backend configuration(pam_ldap) for... Read More
Configuring Google 2FA (Two-Factor Authentication) in Ezeelogin Overview: This article explains how to enable, share, and reuse Google 2FA in Ezeelogin, resolve API deprecation issues, and synchronize server time. It also covers methods to... Read More
Complete step by step tutorial on how to configure ssh-agent and ssh-agent forwarding SSH Agent SSH agent allows you to store ssh keys, and certificates on memory in unencrypted format. ssh-agent acts as an ssh key manager which allows you to use... Read More
How to set up the WebSSH console in Ezeelogin and SSH via browser? Overview: This article describes how to set up and utilize the WebSSH console in Ezeelogin, enabling secure SSH access via a browser by configuring Node.js, SSL certificates, SSH... Read More
Install Nginx with the following command on the Ezeelogin SSH jump server Overview: This article describes how to install and configure Nginx with PHP-FPM on both Debian 9 and CentOS, tailored for an Ezeelogin SSH jump server setup. To set up... Read More
Configure Certificate-Based SSH User Authentication Overview: This article describes configuring certificate-based SSH user authentication with OpenSSH. It details creating a CA key, signing user SSH keys, and updating server settings to trust the... Read More
Setting Up Ezeelogin Jump Server for LAN Overview: This article details that Ezeelogin can be installed on a LAN with internet connectivity, ensuring the jump server connects to the license server on port 443, and provides guidance for obtaining a... Read More
How to enable/disable Yubikey 2FA (Two-factor Authentication) in Ezeelogin? Overview: This article provides a comprehensive guide on configuring and managing Yubikey two-factor authentication (2FA) for SSH jump host. Do refer to the YouTube... Read More
What is an SSH Bastion Host? An SSH Bastion host is simply a single, hardened server that you “jump” through in order to access other servers or devices on the inner network. it’s simply a server that all of your users can log into... Read More
The Ezeelogin configuration file is located at /usr/local/etc/ezlogin/ez.conf Ezeelogin has two logs files one for the web interface and one for the backend ssh interface called the ezsh shell (short for the Ezeelogin backend shell) FRONTEND OR WEB... Read More
Overview: This article explains how to disable MySQL strict mode. You can either run a SQL command to set sql_mode to 'NO_ENGINE_SUBSTITUTION' or adjust the sql_mode setting in the my.cnf file. After making these changes, restart MySQL... Read More
You can automatically enable HTTPS on your website with EFF’s Certbot, deploying Let’s Encrypt certificates 1. Install snapd Installing snap on Red Hat Enterprise Linux (RHEL) / Centos Adding EPEL Repo RHEL ... Read More
Integration of Open-LDAP (PAM-LDAP) in CentOS Overview: This article details how to integrate OpenLDAP (PAM-LDAP) with CentOS for SSH authentication using Ezeelogin. It covers installing PHP-LDAP, configuring LDAP settings via the web GUI, and... Read More
Can Ezeelogin operate effectively behind a firewall, NAT, or proxy server? Overview: This article explains that Ezeelogin can function behind a firewall, NAT, or proxy by establishing a connection to the license server on port 443, with options to... Read More
Integration of WINDOWS-AD (PAM-LDAP) in CentOS 7/6 Overview: This article detailing the steps to integrate WINDOWS-AD (PAM-LDAP) in CentOS 7/6. It includes PHP-LDAP installation, LDAP configuration via web GUI, and setting up PAM_LDAP for SSH... Read More
Integration of Open-LDAP (PAM-LDAP) in Ubuntu Make sure that the PHP-LDAP extension is installed on the server. Replace the PHP version in the below command. root@jumpserver:~# apt-get install phpx.x-ldap eg: root@jumpserver:~# apt-get... Read More
How to Create a SSL Certificate on ezeelogin jump server Apache for CentOS 6 /Centos 7/Centos 8 ? Overview: This article covers creating SSL certificates on Ezeelogin jump servers by installing necessary packages, creating directories for... Read More
Configure Ezeelogin to authenticate using Windows_AD(Pam-LDAP) in Ubuntu 16.x, 18.x, 20.x, 22.x ? Overview: This article provides steps to integrate Windows-AD (PAM-LDAP) in Ubuntu for SSH authentication via Ezeelogin. It includes PHP-LDAP... Read More
Configuring ezeelogin for authentication with OpenLDAP or Windows AD server Overview: This article outlines how to configure Ezeelogin for authentication with OpenLDAP or Windows AD servers. It covers the use of the AutoCreate feature for system... Read More
How to configure Ezeelogin jump server to use SSL for MySQL database connections on centos? Overview: This article explains configuring SSL for MySQL on the Ezeelogin jump server using CentOS 7 and MySQL 5.5. It includes checking SSL status,... Read More
How to set up a periodic root password reset cronjob on servers synopsis: This article provides instructions for periodically resetting root passwords on servers using Ezeelogin, enabling automated password changes, and manually resetting... Read More
How can an existing LDAP user group be mapped to the Ezeelogin user group? FAQ: How to assign a user group for LDAP users? Is it possible to change the user group for LDAP users? Is it possible to use the same group name assigned in LDAP in... Read More
How to enable or disable force SSL for Ezeelogin web interface? Synopsis: This article explains how to enable or disable force SSL, ensuring that the Ezeelogin web GUI is accessible only via the HTTPS protocol for Ezeelogin gateway users. Step 1:... Read More
Enabling Passwordless SSH Login Using Public Keys Overview: This article offers a comprehensive guide on configuring passwordless SSH authentication for users accessing the Ezeelogin backend shell (ezsh). It details the process of adding SSH public... Read More
Configuring Session Expiry for the Web Interface Synopsis: This article explains what web session timeout is and also outlines the steps to set or enable session timeout in the Ezeelogin Web Interface. Web session timeout is an event that... Read More
Port numbers used to function Ezeelogin. Overview: This article describes how to configure network ports on an Ezeelogin SSH Jump server, ensuring essential ports like HTTP, HTTPS, and SSH are open for inbound and outbound traffic, along with... Read More
How to set the expiry for Ezeelogin SSH gateway users? Overview: This article describes the feature that lets you manage the duration for which an SSH gateway user will have access to the gateway after expiry. The duration of the SSH access to the... Read More
How to add a server using ssh key pair in Ezeelogin? Overview: This article helps gateway users in adding a remote server in Ezeelogin using SSH key pair and also explains on how to add a server using global key of Ezeelogin, allowing users to add a... Read More
How to reset Ezeelogin gateway user password/security code? Synopsis: This article helps users in resetting Ezeelogin gateway user password and security code via Ezeelogin GUI. Step 1: Login to Ezeelogin GUI as the user whose password needs to... Read More
Different key based authentication methods explained for SSH to remote servers Overview:The article explains different key-based authentication methods for SSH to remote servers using Ezeelogin, including using global/public keys, private keys, key... Read More
How to Change the Ezeelogin Web URL by Removing the /ezlogin Suffix I'm trying to modify our server so we do not need to reference the /ezlogin at the end of our URL. I modified the apache configs accordingly, however it stops the Ezeelogin... Read More
Quick Server Lookup by Hostname or IP Address in ezsh Overview: This article explains how to quickly find servers by hostname, IP address, or description in the ezsh shell. Use menu search modes (Normal, Name, IP, Description) with f10 or , to... Read More
Integrate AWS SSO in Ezeelogin SSH Gateway 1. Login to AWS console > select AWS Single Sign-On and click on Applications 2. Click on Add Application 3. Click on Add a custom SAML 2.0 application 4.�... Read More
How to Create an SSL Certificate on SSH jump server for Nginx on Debian Overview: This article describes how to create a self-signed SSL certificate, configure Nginx to use SSL, and adjust the Nginx configuration to enable SSL for secure web... Read More
How to view the encrypted Ezeelogin database password from Ezeelogin configuration file (/usr/local/etc/ezlogin/ez.conf)? Overview: This article helps admin users to retreive Ezeelogin database credentials, including the steps on decrypting the... Read More
What setting needs to be changed in the Ezeelogin jump server configuration file if MySQL is listening on a different port? Synopsis: The following article will describe how you modify the Ezeelogin jump server configuration to accommodate MySQL... Read More
Searching for a server using a hostname or IP address in the SSH jump server interface Overview: This article describes how to change the search option under the Server tab, including options for searching by hostname, IP address, server group, and... Read More
Directly Accessing the Entire Server Listing in the Backend Shell Overview: This article explains how to bypass the group menu in the backend shell and go directly to the server list. Navigate to Account -> Preferences, select Skip group menu,... Read More
Integrating Okta Single Sign-On (SSO) with Jumpserver. Overview: This article describes integrating Okta Single Sign-On (SSO) with Jumpserver, including steps to configure Okta application settings, map SAML attributes, and enable SAML... Read More
Configuring Web Panel for SSH on Custom Ports Overview: This article explains setting the Gateway SSH Port under Settings -> General -> Miscellaneous for a Jumphost SSH daemon on a non-standard port, ensuring connectivity management. ... Read More
Returning to Standard Authentication After LDAP Setup: Steps to Regain Access Overview: This article describes how to switch the Ezeelogin web panel authentication from LDAP back to internal authentication using specific commands for versions 7 and... Read More
How to set custom SSH port in Ezeelogin gateway? This article provides an overview of setting up a custom port number when sshd is listening on custom port instead of the default ssh port 22 Navigate to Settings->General->Miscellaneous->... Read More
Default SSH Port for Target Servers Overview: This article guides you through customizing the default outbound SSH port for added target servers. You can change the default outbound port number for target servers that are added in Settings->... Read More
Integrating OneLogin Single Sign-On (SSO) with Jumpserver Overview: This article describes integrating OneLogin Single Sign-On (SSO) with Jumpserver, focusing on configuring SAML settings in OneLogin and Jumpserver for web application... Read More
How to integrate OpenLdap with Centos 8 using SSSD? Run the following commands to install the SSSD packages [root@jumpserver ~]# yum install sssd sssd-client nscd -y Add ldap_search_base,ldap_default_bind_dn... Read More
Is it possible to add more than one SSH public key to ezeelogin ? Synopsis: This article helps Ezeelogin gateway users in adding more than one SSH public keys to the Ezeelogin system, allowing users to log in seamlessly without being prompted for... Read More
How can I forward env variables over ssh in Ezeelogin? Overview: This article helps Ezeelogin gateway users to set passthrough environment variables that should be allowed to be passed to the remote servers when logging in via Ezeelogin SSH jump... Read More
Follow the steps to interate Red Hat IDM (Ldap protocol) in ezeelogin Refer this document to install an IDM server Run ldapsearch on IDM server to find the ’DN’ of the admin user or other user having admin privileges ... Read More
Regenerating Cluster Keys for Primary and Secondary Nodes in Ezeelogin Overview: This article details how to reset the cluster key in Ezeelogin, focusing on regenerating keys for secure master-slave communication. It covers key type selection,... Read More
How to configure Ezeelogin Jump Server to use SSL for AWS RDS database connection? Refer this article to set up AWS RDS . You can download certificates for using SSL in AWS RDS from here. 1. Move the certificate file to /usr/local/etc... Read More
How to integrate Windows AD with Ubuntu 18/20/22 using SSSD? Ensure that the following ports on the Ubuntu host are open and accessible to the AD domain controllers. DNS =53, LDAP =389, Kerberos 88 & 464, LDAP Global Catalog 3268 and NTP 123 ... Read More
Configure Ezeelogin to authenticate using Windows_AD / OpenLDAP (Pam-Ldap) in Debian. Overview: This article describes the steps to configure Ezeelogin to authenticate using Windows Active Directory or OpenLDAP (PAM-LDAP) on Debian, including... Read More
How to configure SMTP relay with Sendmail? Install Sendmail Ubuntu / Debian systems apt install sendmail Centos/RHEL yum install sendmail 1. Create Authentication file. Create a directory in /etc/mail directory sudo mkdir ... Read More
How to reset or clear the two-factor authentication of a user? This will clear/reset all the two-factor authentication mechanisms such as GOOGLE Authenticator, YUBIKEY, and DUO Authenticator of the user. 1. Login as administrator on Ezeelogin GUI... Read More
How to Integrate Azure Active Directory Domain Service in Ezeelogin jump server with LDAPS Refer to the article to Enable LDAPS on Azure AD and integrate it into your application 1 . Login to Ezeelogin Web-GUI > open settings > Ldap �... Read More
Setup Cloudflare ZTNA (Zero Trust Network Access) with Ezeelogin for securing SSH access Cloudflare Tunnel can also route applications through a public hostname, allowing users to connect to an SSH server with Cloudflared access. This method... Read More