Tweaks & Configuration Articles RSS Feed
Configure Nginx webserver on Jump server / Bastion host
Viewed 4490 times since Fri, Nov 3, 2017
Install nginx  with the following command on Ezeelogin ssh jump server   Install & Configure Nginx on Debian 9 Install the package using the following command  [email protected]:~# apt update ; apt-get install  nginx php-fpm   ... Read More
setup web ssh console in ezeelogin and ssh via browser
Viewed 4461 times since Tue, Jan 30, 2018
This feature is available from Ezeelogin 7.4.1 and above only. This feature lets you ssh using browser and does not need a ssh terminal.   White list your ip address from which you are accessing ,as certain firewall programs may detect the traffic... Read More
Integrate OpenLdap / Windows Active Directory ( AD ) authentication in ezeelogin jump server (Centos &Ubuntu)
Viewed 4253 times since Thu, Jun 15, 2017
  Integration of OpenLdap / Activedirectory (with autocreate feature) [Frontend]  You can configure Ldap/AD with autocreate feature. You can use this ,if you are using Ldap authentication and do not plan to use backend configuration(pam_ldap)... Read More
How to configure Yubikey two factor authentication in ssh ?
Viewed 3654 times since Thu, Jun 15, 2017
Configure Yubikey 2 factor authentication for Ezeelogin GUI and for the backend ssh? Do check out the video to Configure Yubikey two factor authentication in ssh jump host   Go to Settings->General settings->Authentication> and fill in... Read More
Configuration and error log files to check for troubleshooting
Viewed 3243 times since Thu, Jun 15, 2017
The Ezeelogin configuration file is located at /usr/local/etc/ezlogin/ez.confEzeelogin has two logs files one for the web interface and one for the backend ssh interface called the ezsh shell (short for the ezeelogin backend shell) FRONTEND OR WEB... Read More
Can we map existing user group in ldap to ezeelogin as ezeelogin user group ?
Viewed 2795 times since Mon, Sep 25, 2017
we have multiple group in ldap for different user which have different authorization groups, so if we map these user group via ldap  are these user will get authorized server to access ?        Yes, all you need to is create usergroup within... Read More
How do i configure Ezeelogin to authenticate using OpenLdap(Pam-Ldap) in centos ?
Viewed 2728 times since Mon, Feb 5, 2018
Integration of Open-LDAP (PAM-LDAP) in centos Make sure that PHP-LDAP extension is installed on the server  [email protected]:~# yum intall php-ldap ;apachectl restart 1.  Login to Web-GUI > open settings > Ldap  Add the details... Read More
Can i install ezeelogin Jump server solution in a lan?
Viewed 2481 times since Sat, Jul 8, 2017
LAN with Internet Connectivity Yes, you can install Ezeelogin Jump server software in a lan which has internet connectivity. Do ensure that the jump box is able to connect to the license server (license.ezeelogin.com) on port 443. The license server... Read More
How to enable google 2FA (Two factor Authentication) in ezeelogin ?
Viewed 2475 times since Mon, Oct 9, 2017
How to enable  google 2FA (Two factor Authentication) in ezeelogin ?  Open ezeelogin webpanel > Account > Google Authenticator            Click on 'set' button and scan the QR code with the Google Authenticator App   ... Read More
Setting session time out for the webinterface
Viewed 2132 times since Wed, Jun 14, 2017
To modify the timeout values in the web interface, edit the config file     /usr/local/etc/ezlogin/ez.conf file and set the variable in seconds.        cookie_expiration 3600 The config file for EZ Version 5 would be /usr/local/etc... Read More
what port should i open on my server firewall to fetch ezeelogin license?
Viewed 2115 times since Wed, Aug 16, 2017
What is the port number used to fetch ezeelogin license?  You just need to allow inbound traffic from license.ezeelogin.com & license2.ezeelogin.com  on port 443. Read More
add amazon ec2 in jump server or aws jumpbox
Viewed 2044 times since Tue, May 8, 2018
How to add amazon ec2 instance in ezeelogin jump server or bastion host ?  1. Get the private Key from amazon ec2 instance           You can download the key while creating an amazon instance .You will not able to download the key file after it... Read More
crons for changing root passwords on servers periodically and managing ssh user logs.
Viewed 1989 times since Thu, Jun 15, 2017
What are the cronjobs for resetting root password on servers periodically and clearing the ssh user logs? In Ezeelogin V6.x or 7.x.   The file /var/spool/cron/<admin_user> on your Ezeelogin gateway should have the following contents. 1 1 * ... Read More
Custom private key / public key pair in ssh gateway Solution
Viewed 1984 times since Thu, Jun 15, 2017
1.How do I use my custom private/public Key pair to be used as the Global Public key which would be copied over to new servers that i add? 2.How do i change the default Global Public key( Servers->Global Key ( SSH public Key) being used in... Read More
How do i configure Ezeelogin to authenticate using Windows_AD(Pam-Ldap) in centos?
Viewed 1957 times since Wed, Feb 7, 2018
 Integration of WINDOWS-AD (PAM-LDAP) in centos 7/6 Make sure that PHP-LDAP extension is installed on the server  [email protected]:~# yum install php-ldap ; apachectl restart     1.  Login to Web-GUI > open settings > Ldap... Read More
Will Ezeelogin work behind a firewall or NAT or behind a Proxy?
Viewed 1934 times since Sat, Jul 8, 2017
Yes, Ezeelogin would work behind a firewall , NAT or a proxy. It would need to establish a connection to license.ezeelogin.com on port 443 to fetch the license. wget -qO- http://ezeelogin.com/myip Run the command  on the ssh gateway server and... Read More
How do i configure Ezeelogin to authenticate using Open_Ldap(Pam-Ldap) in ubuntu?
Viewed 1800 times since Fri, Feb 23, 2018
Integration of Open-LDAP (PAM-LDAP) in Ubuntu Make sure that PHP-LDAP extension is installed on the server    [email protected]:~# apt-get install php5-ldap/php7-ldap ; apachectl restart    1. Login to Web-GUI > open settings >... Read More
Enable or Disable or force ssl for the web interface
Viewed 1795 times since Thu, Jun 15, 2017
You can force the web gui to be accessed only via the https protocol. Before enabling it, ensure that ssl is enabled for the virtualhost where you have installed ezeelogin ssh jumphost Edit the configuration file vi /usr/local/etc/ezlogin/ez.conf ... Read More
configure jump server to use SSL for MySQL
Viewed 1777 times since Mon, Apr 30, 2018
How to configure ezeelogin jump server to use SSL for MySQL database connections on centos ? Mysql-SSL setup on Centos 7,mysql server 5.5 version 1. Check the Current SSL/TLS Status    Log into a MySQL session  [email protected]:~# mysql -u root ... Read More
How do i configure Ezeelogin to authenticate using Windows_AD(Pam-Ldap) in ubuntu?
Viewed 1738 times since Wed, Feb 7, 2018
How do I configure Ezeelogin to authenticate using Windows_AD(Pam-LDAP) in Ubuntu?   Integration of WINDOWS-AD (PAM-LDAP) in Ubuntu Make sure that PHP-LDAP extension is installed on the server  [email protected]:~# apt-get install php5... Read More
How to add ssh public key for passwordless authentication in ssh
Viewed 1691 times since Fri, Sep 1, 2017
SSH Gateway users can set add their ssh public  keys for passwordless authentication to login into ezsh shell ( ezeelogin backend shell).  Press the F2 key in ezeelogin shell to enter your public keys for ssh authorized keys based authentication so... Read More
How do i configure Ezeelogin to authenticate using OpenLdap or Window AD server?
Viewed 1687 times since Wed, Jan 24, 2018
1.How do i configure Ezeelogin jump server to authenticate using OpenLdap or Window AD server? 2.How do I configure SSH gateway to authenticate from LDAP or Windows AD server?   This video shows how to configure LDAP authentication for the webpanel... Read More
What setting to be changed in jump server configuration file if mysql is listening on a different port?
Viewed 1442 times since Wed, Jun 14, 2017
What setting to be changed in ezeelogin jump server configuration file  if mysql is listening on a different port?   Edit the variable db_port in /usr/local/etc/ezlogin/ez.conf and set the port number.Also you may want to change the db_host value... Read More
configure jump server to use SSL for MySQL server
Viewed 1423 times since Thu, Apr 12, 2018
How to configure ezeelogin  to use SSL for MySQL database connections  on ubuntu 16.04 ? Mysql - SSL setup on Ubuntu 16.04 mysql server 5.7 version 1. Check the Current SSL/TLS Status    Log into a MySQL session  [email protected]:~# mysql -u... Read More
How do i change the web url / uri of my installation?
Viewed 1372 times since Thu, Jun 15, 2017
How do i change the web url of my installation? I'm trying to modify our server so we do not need to reference the /ezlogin at the end of our URL. I modified the apache configs accordingly, however it stops the ezeelogin panel from working. To... Read More
How can i reset password / security code ?
Viewed 1278 times since Wed, Oct 18, 2017
Is it possible to change the password / security code by the user itself ?      Yes.You can change your password /security code from your user account. Open Account > Password      Read More
How do i change the authentication from ldap to internal in the database?
Viewed 1244 times since Thu, Jun 15, 2017
I am no longer able to login after i switched to ldap authentication. How do i switch back to normal authentication?The admin user that was created at the time of installation would still be able to login and switch to normal authentication.however,... Read More
How can i add more than one public key to ezeelogin user ?
Viewed 1239 times since Wed, Oct 18, 2017
Is it possible to add more than one SSH public key to ezeelogin ? How can i add more than one public key to ezeelogin user ?   Yes.You can add more than one public key to ezeelogin user.    Add the SSH Public keys to (Replace {username} with... Read More
Setting in web panel when SSH Daemon is listening on non standard ports.
Viewed 1218 times since Thu, Dec 21, 2017
Sometime, the SSH daemon on your Jumphost box would be listening on a non standard port instead of 22. In such cases,set Gateway SSH Port under Settings->General->Miscellaneous->Gateway SSH Port. Read More
Default outbound ssh port for target servers added in
Viewed 1207 times since Thu, Dec 21, 2017
You can change the default outbound port number for target servers that are added in Settings->General->Defaults-> Defaults SSH Port. For example, if you are using port 32002 for your fleet of servers, then change Default SSH Port variable... Read More
How to install ssl certs in jump server(secure connection) ?
Viewed 1156 times since Mon, Apr 30, 2018
How to Create a SSL Certificate on ezeelogin jump server Apache for CentOS 6 /Centos 7 ?   Install Mod SSL [email protected] :~# yum install mod_ssl openssl Create a New Directory   we need to create a new directory where we will store... Read More
Setting to be changed when sshd is listening on a custom port instead of default port in the ssh jumphost server
Viewed 1024 times since Sat, Mar 10, 2018
Navigate to Settings->General->Miscellaneous->Gateway SSH Port and set the custom port number that sshd is listening on the ssh gateway server. In the example below, sshd is listening on the port 2014 hence the Gateway SSH port is set to... Read More
How to bypass the group menu in the backend shell and go directly to the entire server listing?
Viewed 990 times since Tue, Mar 27, 2018
To skip the group menu listed in the backend shell as shown  and to be presented with the server list as show below as the first screen when you ssh into the ezsh shell.   Navigate to Account->Preferences , select Skip group menu and choose... Read More
How to search using IP or other fields instead of host name in jump server ssh interface or gui?
Viewed 955 times since Fri, May 4, 2018
How to  search for server using hostname or ip address in the gui or ssh jump server interface? Under the Server tab, you can change the search option as show below.   How to  search for server using hostname, ip address, server group in the jump... Read More
How to find a server by its hostname, ip address, very quickly in ezsh shell
Viewed 939 times since Tue, Mar 27, 2018
You can find a server by its hostname, ip address, very  quickly in ezsh shell. To ensure that only the servers hostname matching the strings typed in are displayed,  switch the menu search mode from Normal to Name based search mode. In the example... Read More
How to install free SSL with Let’s Encrypt?
Viewed 883 times since Wed, Jul 18, 2018
You can automatically enable HTTPS on your website with EFF's Certbot, deploying Let's Encrypt certificates Apache on CentOS/RHEL 7 To use Certbot, you must first  enable the EPEL repository yum install https://dl... Read More
Set SSH User Expiry
Viewed 785 times since Thu, Sep 20, 2018
This feature lets you manage the duration for which an ssh gateway user will have access to the gateway after which it expires. The duration of the ssh access to the gateway can be set to expire in minutes,hours, day or on a date as show below. This... Read More
How To Create a Self-Signed SSL Certificate for Nginx on debian
Viewed 646 times since Mon, Jun 4, 2018
How to Create a SSL Certificate on ezeelogin jump server for Nginx on debian 8 Create a Self Signed Certificate When we request a new certificate, we can specify how long the certificate should remain valid by changing the 365 to the number of days... Read More
How can i reset the default global key ?
Viewed 562 times since Fri, Jun 8, 2018
Resetting the default global key in ezeelogin    Enter the following command to reset the global key  [email protected]:~# /usr/local/ezlogin/eztool.php -regenerate_ssh_key   Read More
How to reset cluster keys in ezeelogin Master-slave Configuration ?
Viewed 538 times since Fri, Jun 8, 2018
How to reset the cluster key in order to use RSA key ? Regenerate cluster key You need to reinstall secondary/slave (cluster) node after resetting the cluster key     1.Enter the following command to reset cluster key on Primary(master)... Read More
How to pass environment variable through jump server?
Viewed 513 times since Tue, Jul 17, 2018
How can I forward env variables over ssh in ezeelogin?   i. Add environment variable to Ezeelogin gui  > settings > General > Security > Passthrough Environment Variables ii. Allow  environment variable in /etc/ssh/sshd_config... Read More
How can i disable MySQL strict mode ?
Viewed 315 times since Tue, Feb 12, 2019
MySQL strict mode is enabled by default. You can disable it by couple of ways.   1. To Disable Strict Mode via SQL :       You can disable strict mode on your MySQL server by running the following command on your Linode’s command line... Read More
Add a server using ssh key pair in ezeelogin
Viewed 161 times since Fri, Mar 22, 2019
How to add a server using ssh key pair in Ezeelogin? 1. Create a ssh key pair on the server using the command   [email protected]:~# ssh-keygenGenerating public/private rsa key pair.Enter file in which to save the key (/root/.ssh/id_rsa): /root/.ssh... Read More