Access Symantec Encryption Management Server (PGP) via SSH

To gain command line access to a Symantec Encryption Management Server (PGP Universal Server), you will need to create an SSH key. You can do this using a utility such as PuTTYgen to create an SSH key and PuTTY to log into the command line interface.

This article details how to utilize PuTTYgen and PuTTY to access Symantec Encryption Management Server (PGP)

1. Download PuTTY suite or PuTTYgen and PuTTY, from the site below:

http://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

2. Open PuTTYgen.exe, leave the configuration as default, click 'Generate' button:

Image may be NSFW.
Clik here to view.

3. Generate some radomness for the key by moving the mouse over the blank area:

Image may be NSFW.
Clik here to view.

4. Copy the public key block from Key window where it says 'Public key for pasting into OpenSSH authorized_keys file':

Image may be NSFW.
Clik here to view.

5. Click 'Save private key' to save the private key of the key pair you created:

Image may be NSFW.
Clik here to view.

6. Log into SEMS management console as a superuser, such as admin, click 'System' --> 'Administrators' --> 'admin':

Image may be NSFW.
Clik here to view.

7. Click the plus + sign at the end of the 'SSHv2 Key':

Image may be NSFW.
Clik here to view.

8. Select 'Import Key Block', then paste the public key block that copied in step 4, click the 'Import' button:

Image may be NSFW.
Clik here to view.

9. After upload the key block, you will notify the hex fingerprint of the key will now show up in 'SSHv2 Key' line.

You can verify that the fingerprint matches the fingerprint found in the 'Key fingerprint' line on PuTTY Key Generator of step 3.

Image may be NSFW.
Clik here to view.

9. Click 'Save' button.

10. Open PuTTY.exe, enter the Host Name or IP address of the SEMS, select SSH as the protocol:

Image may be NSFW.
Clik here to view.

11. On the left panel, select 'Connection' --> 'SSH', on the 'Private key file for authentication', select the private key file that saved on step 5, then click 'Open' button to start a SSH session:

Image may be NSFW.
Clik here to view.

12. The first time you log into SEMS with PuTTY, you will be given a security warning, click 'Yes' button:

Image may be NSFW.
Clik here to view.

13. You will be prompted to enter a username, type 'root' and press enter:

Image may be NSFW.
Clik here to view.

REMEMBER:

Accessing the server command line for read-only purposes, such as to view settings, logs, etc, is supported. However, performing configuration modifications or customizations via the command line may viod your Symantec Support agreement.