Lehigh ISE / COR@L Lab Wiki

User Tools

Site Tools

Trace: Off-campus access to Cor@l network

Sidebar

Wiki

Info / Resources

Guides

Software

Sample Pages

 

Quick Navigation

tutorial:off_campus_access

Table of Contents

Off-campus access to Cor@l network

Security

The Jumphost (ssh.lehigh.edu) is now protected by dual factor authentication ( Duo Two Factor Authentication ) when logging in directly. As an alternative passwordless ssh can be configured. Please review the Security section when setting up passwordless ssh access to Lehigh IT resources through the jumphost.

We are recommending that a password protected key be used when accessing ssh.lehigh.edu from off campus to protect the integrity of internal IT resources.

Please review the best practices from the website:

Best Security Practices

  • Always protect your key pair with a passphrase.
  • Use a strong passphrase just as you would for your password.
  • Do not use your password as your passphrase.
  • Do not write your password/passphrase and store at a place that anyone can access for e.g. post-it note on your monitor.
  • Verify only your account has access to ssh keys by running chmod 700 ~/.ssh.
  • Never share your private key and/or your passphrase/password.
  • Always store your credentials in ssh-agent with a definite lifetime.
  • Change your passphrase as regularly as you change your password.
  • Do not use reuse your password and passphrase.
  • Limit the number of systems that you log in from.

For more information please review this link.

SSH

SSH access to COR@L network is blocked for security reasons. In case you need to access it, there are two ways to access it:

  1. Connect to VPN and ssh to server you want (coral.ie.lehigh.edu, polyps.ie.lehigh.edu, etc..)
  2. Connect to ssh server of Lehigh 
    ssh username@ssh.lehigh.edu

    with your Lehigh username and Lehigh password.
    Then ssh into COR@L: 

    ssh username@coral.ie.lehigh.edu

    and enter your COR@L password.

SCP

For SCP (Remote file copy) access to your files, you may use a tunnel over ssh.lehigh.edu.

WinSCP

  • Enter coral.ie.lehigh.edu for the host name and your username
  • Click Advanced and Connection/Tunnel
  • Enable “Connect through SSH Tunnel” and enter ssh.lehigh.edu as the host name and enter your username
  • Save and try to connect. You will be asked two passwords, the first one is your Lehigh password and second one is your COR@L password.
tutorial/off_campus_access.txt · Last modified: 2021/05/13 09:54 by mjm519

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki