Connecting to the ThousandEyes Virtual Appliance Using SSH (Mac/Linux)
In order to connect to the ThousandEyes VA, you first need to configure the Virtual Appliance with an SSH public key.
First, we need to check for existing ssh keys on your computer. Open a terminal session and run:
If it says "No such file or directory" go to step 2. Otherwise, you already have an existing keypair, and you can skip to step 3.
To generate a new SSH key, enter the code below. We want the default settings so when asked to enter a file in which to save the key, just press enter.
Now you need to enter a passphrase.
Enter passphrase (empty for no passphrase): [Type a passphrase]
Enter same passphrase again: [Type passphrase again]
Which should give you something like this:
Your identification has been saved in /your/home/dir/.ssh/id_rsa.
Your public key has been saved in /your/home/dir/.ssh/id_rsa.pub.
The key fingerprint is:
01:0f:f4:3b:ca:85:d6:17:a1:7d:f0:68:9d:f0:a2:db [email protected]
Copy the contents of the public key to your clipboard. The following command can be used on Mac OS X to do so:
pbcopy < ~/.ssh/id_rsa.pub
On Linux, you can display the public key in a console with the following command:
Copying part is done by selecting the whole public key (starting with "ssh-..." and ending with "...== [email protected]", where "[email protected]" can be anything - it is essentially a comment to distinguish this particular public key from others). Once selected, use combination of "Ctrl+Shift+C" keys to copy selected text to your clipboard.
Access the web interface of the Virtual Appliance, and navigate to the Appliance Access tab, then copy the public key (which should be on your clipboard) into the "Add New SSH key" text widget.
The text will show as green if it validates successfully, or red if there is a problem. For most circumstances where there is a problem, remove trailing line feeds.
Once you have a valid public key on the ThousandEyes VA, you can connect. Connections are established to the VA using the thousandeyes user account, with the passphrase specified while creating the SSH key:
The first time you connect to the target virtual appliance, your system will note that the identity has been added.
Identity added: /Users/xxxx/.ssh/id_rsa (/Users/xxxx/.ssh/id_rsa)
It is strongly recommended that you use static IP addresses for agents in this circumstance, in order to prevent host key checking problems. When you connect, you'll get a warning similar to the one below:
The authenticity of host '10.0.100.103 (10.0.100.103)' can't be established.
RSA key fingerprint is bc:15:ab:be:d5:09:xx:xx:xx:xx:a7:5a:6e:d7:df:3a.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '10.0.100.103' (RSA) to the list of known hosts.
Once you accept, you're locked into using that IP address unless you modify your list of known hosts. After adding the host, you'll be directed to the home directory of the ThousandEyes VA user.
Now you're SSH'd in. Have fun!