Public key exchange from “Enterprise Cloud Server” to “Terminal Server”

Forum / NoMachine for Linux / Public key exchange from “Enterprise Cloud Server” to “Terminal Server”

Tagged: 

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • November 12, 2024 at 22:32 #50702
    Steve92
    Participant

    Hello,

    I meet a quite difficult use case during the POC.
    On an “Enterprise Cloud Server”(ECS),  when I add a “Terminal Server”(TS) as a node to this ECS, if I well understand, I’m asked to enter credentials of an administrator of TS to allow the public key of ECS to be copied to TS.

    I don’t know and don’t have to know these credentials.

    So, I have to send i.e. by email the public key of ECS to the admin of TS.

    When must she/he put this public key on TS side ?

    Thanks,

    Regards,

    Steve.

    November 13, 2024 at 19:02 #50722
    Britgirl
    Keymaster

    In general, when adding a node to the cloud server, you don’t have to copy any key, the procedure to add the node will propagate the key for the node to use. To do that, you need the admin credentials on the node, the Terminal Server host in your case.

    However, when you don’t have admin permissions on the node you want to add, for example there are two separate administrators for both machines, you can indeed pass the CS public key to the admin of the TS Node, and they can place it in the appropriate directory. On Linux, the public key can be found in the directory, for example in /usr/NX/etc/keys/node.localhost.id_rsa.pub. You, the CS admin, can then proceed to add the node to the Cloud Server with sudo /etc/NX/nxserver –nodeadd IP_of_node –node-name name_of_node.

    See the article here:  https://www.nomachine.com/AR11V01258.

     

    November 13, 2024 at 19:03 #50717
    Steve92
    Participant

    I’ve tested to add the public NX key of Cloud Server to Terminal Server to /var/NX/nx/.nx/config/autorized.crt (from memory).

    “config” directory has to be created (with right permissions) if it’s the 1st node to be added. (Cat node..rsa.key.pub >>  /var/NX/nx/.nx/config/autorized.crt)

    Please, could you confirm it’s OK ?

    It seems to be OK but I want to be sure not to forget something.

    Thanks !

    Regards.

    Steve

     

     

    November 14, 2024 at 10:16 #50730
    Britgirl
    Keymaster

    To add the node, run sudo /etc/NX/nxserver --keyadd /home/user/node.localhost.id_rsa.pub. We create /var/NX/nx/.nx/config/autorized.crt during the nodeadd procedure. It seems you were writing your last reply whilst I was writing mine, so take a look at the article I linked and follow the instructions there.

    November 14, 2024 at 18:37 #50745
    Steve92
    Participant

    Yes, thanks, “–keyadd” works great !

    It’s exactly what I was looking for: simple and supported by NoMachine.

    🙂

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic. Please login .