This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | |||
tutorial:off_campus_access [2017/04/12 15:55] sertalpbilal |
tutorial:off_campus_access [2021/05/13 09:54] (current) mjm519 |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Off-campus access to Cor@l network ====== | ====== Off-campus access to Cor@l network ====== | ||
+ | |||
+ | ===== Security ===== | ||
+ | |||
+ | The Jumphost (ssh.lehigh.edu) is now protected by dual factor authentication ( [[https:// | ||
+ | |||
+ | **We are recommending that a password protected key be used when accessing ssh.lehigh.edu from off campus to protect the integrity of internal IT resources.** | ||
+ | |||
+ | __Please review the best practices from the website:__ | ||
+ | |||
+ | **Best Security Practices** | ||
+ | * **Always protect your key pair with a passphrase.** | ||
+ | * Use a strong passphrase just as you would for your password. | ||
+ | * **Do not use your password as your passphrase.** | ||
+ | * Do not write your password/ | ||
+ | * Verify only your account has access to ssh keys by running chmod 700 ~/.ssh. | ||
+ | * Never share your private key and/or your passphrase/ | ||
+ | * Always store your credentials in ssh-agent with a definite lifetime. | ||
+ | * Change your passphrase as regularly as you change your password. | ||
+ | * Do not use reuse your password and passphrase. | ||
+ | * Limit the number of systems that you log in from. | ||
+ | |||
+ | |||
+ | [[https:// | ||
===== SSH ===== | ===== SSH ===== | ||
Line 19: | Line 42: | ||
* Enable " | * Enable " | ||
* Save and try to connect. You will be asked two passwords, the first one is your **Lehigh password** and second one is your **COR@L password**. | * Save and try to connect. You will be asked two passwords, the first one is your **Lehigh password** and second one is your **COR@L password**. | ||
+ |