Service Desk Knowledgebase: Remote Access: Difference between revisions
| Line 22: | Line 22: | ||
* '''How To:''' [https://wiki.cam.ac.uk/cl-sys-admin/Service_Desk_Knowledgebase:_Windows#Enable_remote_login_to_Windows Enable remote access to '''Windows'''] | * '''How To:''' [https://wiki.cam.ac.uk/cl-sys-admin/Service_Desk_Knowledgebase:_Windows#Enable_remote_login_to_Windows Enable remote access to '''Windows'''] | ||
===slogin-serv=== | |||
http://www.cl.cam.ac.uk/news/2015/02/slogin-server-upgrade/ ''"PuTTY users should ensure that they are using PuTTY 0.64 or later."'' go to http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html & download:<br /> "A Windows installer for everything except PuTTYtel<br />Installer: '''putty-0.64-installer.exe'''" | |||
===setting up ssh keys=== | ===setting up ssh keys=== | ||
Revision as of 09:18, 27 March 2015
This is the Remote Access content page of the CL Wiki Service Desk Knowledgebase. Its purpose is to provide information to the Service Desk team on how to handle problems and requests about this CL service. If you are involved with the provision of this CL service please feel free to add to the knowledge about that it.
If CL staff need to tell the Service Desk team about problems with this service please email
sys-admin-aside@cl.cam.ac.uk.
Return to the Service Desk Knowledgebase SERVICE PORTFOLIO
Key Service Description & URLs
- Access to Computer Lab Systems
- CL Terminal Servers
- Computer Laboratory News (Twitter use @UC_CL_SysAdm)
CL Customer Documentation
- Wake-on-Lan (WoL) page gives access to remote start facilities for workstations (wait 3-4 minutes for it to appear online)
Further CL Sys-Admin Resources
- http://www.wiki.cl.cam.ac.uk/clwiki/SysInfo/TgtServer - Ticket Granting Tickets (TGT) Server
- https://dbwebserver.ad.cl.cam.ac.uk/SCG/Equipment/Inventory.aspx - Inventory
- https://dbwebserver.ad.cl.cam.ac.uk/SCG/DHCP/DHCP.aspx - DHCP
- https://dbwebserver.ad.cl.cam.ac.uk/SCG/Networks/Networks.aspx - VLANs
- How To: Enable remote access to Windows
slogin-serv
http://www.cl.cam.ac.uk/news/2015/02/slogin-server-upgrade/ "PuTTY users should ensure that they are using PuTTY 0.64 or later." go to http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html & download:
"A Windows installer for everything except PuTTYtel
Installer: putty-0.64-installer.exe"
setting up ssh keys
When a user creates new ssh key pairs they will not immediately be useful for external access. The key needs to be collected onto the slogin servers form the users home filespace. The best thing to do is to run the collection process
cl-onserver --fixsshcache
Users should also be advised to check the correctness of their authorized_keys file using /usr/groups/admin/cmds/check-ssh-auth.pl. Helpdesk can usefully check the file of a particular user
/usr/groups/admin/cmds/check-ssh-auth.pl --user <<crsid>>
CL VPN via the UIS service
All staff and students with CL accounts can use the new VPN which is run by the UIS and provides pass-through access to the CL network giving an address in 128.232.109.0/24. To setup the service follow the instructions appropriate for your operating system on the UIS website http://www.ucs.cam.ac.uk/vpn but instead of vpn.uis.cam.ac.uk connect to vpn.cl.cam.ac.uk. Access to the service is controlled via the lookup group cl-network-access.
Underpinning Services
- VPN - UIS VPN Service
Customer-base for this Service
- All staff and students of the Computer Laboratory
Costs
- Free to all current staff and students of the Computer Laboratory
SLA
- N/A
Service Desk Call Handling Procedure
Escalation points and key contacts to be defined...
- RT tickets can be escalated to the ??? team by leaving the Queue as sys-admin with the Owner set to Nobody and the Status set to new. Tell the requestor:
I am passing this request over to the ??? team who, I'm sure, will be in contact shortly.
- RT tickets can be escalated to the ??? by changing the Queue to ??? with the Owner set to Nobody and the Status set to new. Tell the requestor:
I am passing this request over to the ??? team who, I'm sure, will be in contact shortly.
- RT tickets can be escalated to Firstname Lastname by changing the Owner to ??? with the Status set to new. Tell the requestor:
I am passing this request over to ??? who, I'm sure, will be in contact shortly.
Contacts
Primary
- ???@cl.cam.ac.uk (Goes to ???)
- ???@lists.cam.ac.uk (Goes to ???)
- Tel: ???
Other
Availability
- 24x7
Hints, Tips & Known Issues
SSH into slogin-serv.cl.cam.ac.uk from the NMS Service Desk
Vince Woodley (20/03/15)
If you take a copy of your CL.ppk file to the New Museums Site Service Desk you can download, install and run PuTTY v0.64 & Paegent from http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html and use the CL.ppk file to access CRSid@slogin-serv.cl.cam.ac.uk from your accounts on our Windows PCs there.
"No matching mac found" for ssh to slogin service
Piete Brooks (16/03/15)
Following changes to the slogin service around end of February and the start of March 2015, anyone unable seeing messages such as:
no matching mac found: client hmac-md5, hmac-sha1,umac-64@openssh.com,hmac-ripem d160, hmac-ripemd160@openssh.com,hmac-sha1-96, hmac-md5-96 server hmac-sha2-512-etm@openssh.com, hmac-sha2-256-etm@openssh.com,hmac-ripemd160-etm@ openssh.com, umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256
should upgrade to a more recent ssh client (which may require upgrade of OS). If one is not available try connecting to slogin-oldssh.cl.cam.ac.uk instead but this service will be terminated at some point...
SSH from Outside the Computer Lab to a CL Linux Box Timing Out
Piete Brooks (13/03/15)
Computer Lab Linux boxes are configured such that if there are more than ssh 3 connections within 90 seconds from a computer outside of the Computer Lab network then the machine will automatically start dropping ssh packets because there may be a ssh brute force attack going on. The outside computer will see this as the connection timing out. Users will need to wait {how long please ???} until they can make another ssh connection.
Categorising Keywords
- A categorization or service type
