SSH Tectia  
Previous Next Up [Contents] [Index]

    About This Document >>
    Installing SSH Tectia Server >>
        Planning the Installation >>
        Installing the SSH Tectia Server Software >>
            Installing on AIX
            Installing on HP-UX
            Installing on Linux
            Installing on Solaris
        Removing the SSH Tectia Server Software >>
    Getting Started >>
    Configuration >>
    Authentication >>
    Application Tunneling >>
    Troubleshooting >>
    Man Pages
    Advanced Options >>
    Log Messages >>

Installing on HP-UX

On the CD-ROM, binaries for HP-UX are located in the directory /install/hp-ux/. Separate packages are available for HP-UX 10.20 on PA-RISC (10.20-pa-risc), for HP-UX 11.x on PA-RISC (11.00-pa-risc), and for HP-UX 11.x on Itanium (11.22-itanium). Please read the README file for any important last-minute information.

To install SSH Tectia Server on HP-UX, do the following:

  1. (Not necessary in "third-digit" maintenance updates.) Copy the license file as instructed in Section Licensing.
  2. (If installing from CD-ROM.) Copy the installation package to your machine.
  3. Unpack the package with gunzip. In order to be installable, the created package must have the correct long file name. In case your system reads only the short names, check the file name from the file trans.tbl.
  4. If you are upgrading from a version older than 3.2.10, you should remove your previous installation: 
    # swremove ssh2
    This is because file locations and script names have changed.
  5. Install the package by running the following command with root privileges: 
    # swinstall -s <path>/ssh2-<v>-sd-<hpux-v>.depot ssh2
    In the command, <path> is the full path to the installation package (HP-UX requires this even when the command is run in the same directory). In the package name, <v> is the current package version of SSH Tectia Server (for example, 4.4.8.27) and <hpux-v> is the version of the HP-UX operating system (10.20-pa-risc, 11.00-pa-risc, or 11.22-itanium).
  6. To start the server daemon, restart the computer or run the following command: 
    # /sbin/init.d/sshd2 start

Enabling FIPS (Optional)

For a list of platforms on which the FIPS library has been validated or tested, see SSH Tectia Client/Server Product Description.

To enable the FIPS-certified mode, run the following command: 

# /usr/local/sbin/ssh-crypto-library-chooser fips

This will set the library symlinks, so that sshd2 and ssh2 will use the FIPS-certified crypto library. You can change back to using the standard crypto library by running the following command: 

# /usr/local/sbin/ssh-crypto-library-chooser std

You can query the current library status by running the script without arguments. This will show the current symlink target (libsshcrypto-std or libsshcrypto-fips).

Special Considerations on HP-UX

In some systems, the option "-x mount_all_filesystems=false" needs to be given to swinstall and swremove.

If doing a fresh installation (or if the previous host key in /etc/ssh2 has been deleted), the installation script will generate the host key, which may take over 10 minutes on slower systems. The installation may appear to hang in the execution phase because of this.

Previous Next Up [Contents] [Index]

[ Contact Information | Support | Feedback | SSH Home Page | SSH Products ]

Copyright © 2010 SSH Communications Security Corp.
This software is protected by international copyright laws. All rights reserved.
Copyright Notice