Product Name
CIS-CAT Pro Assessor v4
Product Version
All
DateUse /date to insert current date
Problem
| Info |
|---|
Add a short description of the problemWhat are the steps needed to setup ssh keys for CIS-CAT remote assessment? |
Solution
CIS-CAT Ubuntu server (as user cis);
Generate rsa key in PEM format (no passphrase)
ssh-keygen -t rsa -m PEMCopy key to target system
ssh-copy-id cis@3.133.121.21Configure sessions.properties
session.2.type=ssh
session.2.host=3.133.121.21
session.2.user=cis
session.2.identity=/home/cis/.ssh/id_rsa
session.2.port=22
session.2.tmp=/var/tmp
Target Ubuntu server (3.133.121.21)
Add user cis as member of
wheel group
sudo usermod -aG
Check that chris is in the sudoers group id
wheel cisEdit /etc/sudoers and
uncomment this line so user
cis will NOT be prompted for a password when sudoing
;
root) NOPASSWD:ALL
%wheel ALL=(
Test CIS-CAT connectionchris
ALL=(root)NOPASSWD:ALL
ALL
Test connection from CIS-CAT server to target
$
sudo ./Assessor-CLI.sh -test------snip-------
Attempting to load the default sessions.properties, bundled with the application.
Obtaining session connection --> chris@3cis@3.133.121.21:22
Connection established. Test Successful; Disconnecting.
Exit Code 0
| Note |
|---|
Note that this information is provided only for testing and validating key based ssh assessments. Please read the CIS-CAT documentation for more options. |
Keywords;
Related Content
by Label| Filter by label (Content by label) | ||||||
|---|---|---|---|---|---|---|
|
| Page Properties | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||
|