We would be honored if you visited our blog Visit the GSW Forums and read/post/reply to topics and questionsView GSW Training Videos on Team Services
Thanks for viewing information about Georgia SoftWorks Security Questions
UTS - Security - Restrict Access to SSH Clients  
You are viewing UTS Security Questions    
Our News

2017 at GSW

View our Updated Forums

Connect with GSW

Stay current with GSW by connecting with us through our blog and our social media pages.





GUI Config Tool

GSW Telnet Server GUI Configuration Tool

Windows Explorer style interface allowing provisioning and configuration management. Familiar to use operations such as copy, paste, rename, delete, export, import are applied to configurations on a user or system basis. Create templates and quickly view summary configuration data.

TEAM SERVICES  provides your mobile device users a breakthrough in Telnet/SSH2 technology that shatters all prior usability and efficiency standards by allowing unprecedented user collaboration.  Now mobile device users are empowered to share resources, transfer, swap, share and recover dropped sessions. All from the mobile device, no system administrator necessary. All operations can be performed in under 60 seconds.

Video Overviews

Team Services  the first feature set to offer Video overviews. We are excited to provide additional methods to meet customer expectations. Visit the GSW Video Channel!

Request a Webinar

Want to know more about UTS, RC MDMS or GSWBrowse? Request a Webinar. Give us a call or use our contact form and request a webinar.

Privacy Policy - Terms of Use

 

Restrict User to SSH Clients (both 3rd party and GSW, FIPS 140-2 compliant and non FIPS 140-2)

The variables Gsw_FIPSOnly, EnableRFC854Clients, AllowTelnetWithSSH and LcnOnLoopbackOnly are registry key values. Used in conjunction, with specific values, these Registry keys enable or disable the ability to restrict connection only from SSH clients The keys are:

  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\AllowTelnetWithSSH
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\EnableRFC854Clients
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\GSW_FIPSOnly
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\LsnOnLoopBackOnly

Set each registry key value to the following

  • AllowTelnetWithSSH=0
  • EnableRFC854Clients=1
  • GSW_FIPSOnly=0
  • LsnOnLoopBack=1

Only allow connections from GSW SSH clients (both FIPS 140-2 compliant and non-FIPS 140-2)

The variables GswFIPSOnly, EnableRFC854Clients and AllowTelnetWithSSH are registry key values. Used in conjunction, with specific values, these Registry keys enable or disable the ability to restrict connection only by GSW SSH clients. The keys are:

  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\AllowTelnetWithSSH
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\EnableRFC854Clients
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\GSW_FIPSOnly
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\GS_Tnet\Parameters\LsnOnLoopBackOnly

Set each registry key value to the following

  • AllowTelnetWithSSH=0
  • EnableRFC854Clients=0
  • GSW_FIPSOnly=0
  • LsnOnLoopBack=1

Note: After you change the registry values, the new configuration will take effect for all new connections

 
Share it!    Bookmark  GSW Security: Restrict or allow based on if it is an SSH client at Delicious Digg GSW Security: Restrict or allow based on if it is an SSH client Share GSW Security: Restrict or allow based on if it is an SSH client with your Twitter followers Share GSW Security: Restrict or allow based on if it is an SSH client at StumbleUpon Add GSW Security: Restrict or allow based on if it is an SSH client to your Technorati favorites Share GSW Security: Restrict or allow based on if it is an SSH client on Facebook Share GSW Security: Restrict or allow based on if it is an SSH client on Blinklist Share GSW Security: Restrict or allow based on if it is an SSH client on Diigo Share GSW Security: Restrict or allow based on if it is an SSH client on Reddit Share GSW Security: Restrict or allow based on if it is an SSH client on Linked In Seed the vine with GSW Security: Restrict or allow based on if it is an SSH client