[Contents] [Index]

About This Document >>     Installing SSH Tectia Server (M) >>     Using SSH Tectia Server (M) >>     Troubleshooting SSH Tectia Server (M) >>     Configuration >>     Authentication         Server Authentication with Public Keys >>         Server Authentication with Certificates >>         User Authentication with Passwords         User Authentication with Public Keys >>         User Authentication with Certificates >>         Host-Based User Authentication >>         User Authentication with Keyboard-Interactive >>         User Authentication with GSSAPI >>     Application Tunneling >>     Sample Files >>     Man Pages     Log Messages >>

Authentication

The Secure Shell protocol used by the SSH Tectia client/server solution provides mutual authentication – the client authenticates the server and the server authenticates the client. Both parties are assured of the identity of the other party.

The remote SSH Tectia Server host can authenticate itself using either traditional public-key authentication or certificate authentication.

Different methods can be used to authenticate SSH Tectia Client users. These authentication methods can be combined or used separately, depending on the level of functionality and security you want.

User authentication methods used by the client by default are, in the following order: GSSAPI, public-key, Keyboard-Interactive, and password authentication (if available). Public-key and certificate authentication are combined into the public-key authentication method. The server allows public-key and password authentication by default.

Figure : User authentication methods

Server Authentication with Public Keys

Server Authentication with Certificates

User Authentication with Passwords

User Authentication with Public Keys

User Authentication with Certificates

Host-Based User Authentication

User Authentication with Keyboard-Interactive

User Authentication with GSSAPI

[Contents] [Index]