Article Number
000034322
Applies To
RSA Product Set: Netwitness for Logs/Packets
RSA Product/Service Type: SA Core Appliance
RSA Version/Condition: 10.4.x, 10.5.x, 10.6.x
RSA Product/Service Type: SA Core Appliance
RSA Version/Condition: 10.4.x, 10.5.x, 10.6.x
Issue
By default, while trying to SCP or SSH from one appliance to another, it prompts for the password of the destination appliance. This can be an issue while trying to run a script which would automatically copy files from one appliance to another.
Resolution
To fix this, generate ssh-key pairs so that the appliance trusts each other
The example below shows the steps to generate key on SA server and copy it to the Log Decoder so that SSH from SA to Log Decoder is trusted
[root@saserver2 log]# ssh-keygen -t rsa -b 2048
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa): # Hit Enter
Enter passphrase (empty for no passphrase): # Hit Enter
Enter same passphrase again: # Hit Enter
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
Now copy this public key to the Log Decoder
[root@saserver2 log]# ssh-copy-id root@<Log Decoder IP>
Image description
Once complete, an SSH to the Log Decoder will not prompt for a password
Image description
The example below shows the steps to generate key on SA server and copy it to the Log Decoder so that SSH from SA to Log Decoder is trusted
[root@saserver2 log]# ssh-keygen -t rsa -b 2048
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa): # Hit Enter
Enter passphrase (empty for no passphrase): # Hit Enter
Enter same passphrase again: # Hit Enter
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
Now copy this public key to the Log Decoder
[root@saserver2 log]# ssh-copy-id root@<Log Decoder IP>
Image descriptionOnce complete, an SSH to the Log Decoder will not prompt for a password
Image descriptionIn this article
