SSH

Installing on Linux (RPM)

Tectia Server for Linux platforms is supplied in RPM (Red Hat Package Manager) binary packages for Red Hat Enterprise Linux, Rocky Linux and SUSE Linux running on the 64-bit architecture.

The downloaded installation package contains the RPM installation files.

Two packages are always required: one for the common components of Tectia Client and Server, and one for the specific components of Tectia Server.

To install Tectia Server on Linux, follow the instructions below:

  1. If installing on SELinux-enabled systems, ensure that the semanage command is available. In older Linux versions semanage is typically installed via policycoreutils-python-utils or policycoreutils-python.

    [Note]Note

    On SELinux system, if an alternate port is used, for example "222" instead of the default secure shell port, use the following semanage command to allow it:

    # semanage port --add --type ssh_port_t --proto tcp 222
    

    If installing on SUSE, install prerequisite package:

    # zypper install insserv-compat
  2. Unpack the downloaded tar package.

  3. Make sure no other software is using port 22 (Tectia Server default listen port). Stop any competing server software or change their listen port.

  4. Select the installation packages (in this example, we install Tectia Server only).

    When installing on Red Hat Enterprise Linux, Rocky Linux or SUSE Linux versions running on the 64-bit x86-64 architecture, use the following packages:

    ssh-tectia-common-<version>-linux-x86_64.rpm
    ssh-tectia-server-<version>-linux-x86_64.rpm
    

    In the commands, <version> indicates the product release version and the current build number (for example, 6.6.5.123).

  5. Install the packages with root privileges:

    # rpm -ivh ssh-tectia-common-<version>-linux-x86-64.rpm
    # rpm -ivh ssh-tectia-server-<version>-linux-x86-64.rpm
    

    The server host key is generated during the initial installation. The key generation may take several minutes on slow machines.

    Or upgrade the packages if you already have an older Tectia Server version installed:

    # rpm -Uvh ssh-tectia-common-<version>-linux-x86_64.rpm
    # rpm -Uvh ssh-tectia-server-<version>-linux-x86_64.rpm
    
  6. Copy the license file to the /etc/ssh2/licenses directory. (This is not necessary in "third-digit" maintenance updates.) See Licensing.

    If this is the initial installation of Tectia Server, the directory does not yet exist. You can either create it manually or copy the license after the installation. In the latter case, you have to start the server manually after copying the license file.

  7. The installation should (re)start the server automatically.

    [Note]Note

    If the server does not start (for example because of a missing license or because some other secure shell software is running on port 22), you can start it manually after correcting the problem.

    • Using Tectia Server control utility:

      # ssh-server-ctl start
    • Or on Linux with systemd:

      # systemctl start ssh-server-g3
    • Or on Linux without systemd:

      # /etc/init.d/ssh-server-g3 start