Your browser does not allow storing cookies. We recommend enabling them.


Connection Broker Configuration

For users of Tectia Client, the most relevant and most typically needed item to configure for the Connection Broker are the connection profile settings. All other settings are typically configured by system administrators.

It is advisable to create connection profiles for servers where you will need to connect repeatedly. The profiles contain the server ID, your user name on that server, and information on the authentication method to be used.

In general, the following aspects can be configured for the Connection Broker:

Secure connection details

These settings define how Tectia Client will establish the secure connections to the remote servers, for example: what type of a connection will be opened, what authentication methods will be applied, will a proxy be used and is tunneling allowed.

User and server authentication methods

The user authentication settings define the methods Tectia Client will use when sending user authentication data to the remote servers. The Tectia Connections Configuration GUI includes a public-key wizard (on Linux and Windows) that helps in creating and uploading public keys to the servers.

The server authentication settings define how the remote servers will be authenticated by Tectia Client.

Tunneling of connections

Tunnels can be defined to secure all or some TCP applications and FTP connections. It is also possible to allow forwarding of X11 sessions and SSH connections from one remote server to another.


The first things to configure are the user authentication settings (creating public keys for the users and uploading them to remote servers) and creating connection profiles for servers where you will need to connect repeatedly.

For instructions on defining the authentication settings, see Chapter 4, and for the authentication-related options in the configuration file, see authentication-methods.

For instructions on creating connection profiles via the GUI, see Defining Connection Profiles, and about adding connection profiles directly into the configuration file, see the section called “The profiles Element”.

For a detailed description of the Connection Broker configuration options, see Appendix A.




What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.

    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now
  • ISACA Practitioner Guide for SSH

    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now