SSH Tectia

SSH Tectia Client (Windows)

This section describes the parameters for SSH Tectia Client on Windows: connection profiles in Connection Profiles, global settings in Global Settings, and command-line client settings in Command-Line Client. Configuration sets are described in Configuration Sets (Windows).

Connection Profiles

A connection profile contains settings used for connecting to a specific host.

General

name

Name of the configuration. The profile named default is used for the Quick Connection.

DesktopIcon

Specifies whether a desktop icon will be created for this configuration. If a desktop icon is not created, this configuration will only be available through the Profiles menu in SSH Tectia Client.

StartAtLogin

Specifies whether the connection specified by this profile should be automatically opened when the user logs in (whether SSH Tectia Client should be automatically started and connection establised to the host specified by this profile upon login). If this is set, ensure that the host and port are specified. You can also specify an explicit window position and size in this case.

Close window on session close

Specifies whether to close the terminal or file transfer window when the connection to the server is closed.

Connection

Host Name

Specifies the name or IP address of the host to connect to.

Port

Specifies the port on the server to connect to. The default is 22.

User Name

Specifies the username to be used. An asterisk (*) means that the user is prompted for the username, and the value USERNAME uses the Windows login name.

Encryption

Specifies the cipher to be used.

Encryption Cipher Size

Specifies the cipher size to be used.

Custom Cipher List

Specifies the cipher list to be used. Valid only if the cipher type Cipher list has been defined as the Encryption on the Connection page.

MACs

Specifies the MAC (Message Authentication Code) to be used.

Compression

To enable compression, select zlib.

Terminal Answerback

Specifies the terminal emulation to be used.

Use Firewall

Specifies whether to use the firewall defined in the Global settings.

Enable Terminal

Specifies whether to open a terminal. Disable if only tunnels or sftp should be requested.

Rekey Interval

Specifies how often the key exchange will be repeated, and all encryption keys changed. Normally there is no need to change this setting. Disabling rekey for the client does not prevent the server from requesting rekey. Value 0 disables rekey.

Authentication

Authentication Methods

Specifies the authentication methods that will be attempted. Please see SSH Tectia Client documentation for details.

GSSAPI methods

Specifies the GSSAPI method to be used.

GSSAPI allow old method

Specifies whether GSSAPI authentication is allowed without message integrity check. The legacy GSSAPI method is vulnerable to replay attacks. Enable for backwards compatibility with SSH Tectia Server versions 4.1.0 and earlier.

GSSAPI delegate token

Specifies whether to delegate a token in the Kerberos GSSAPI method.

Quick Connect Method

Specifies the Quick Connect Method in the default profile.

Public Key Authentication Methods

Any certificates and public keys available through the Authentication Agent, PKCS #11, or generated by SSH Tectia Client itself are offered to the server by default.

Colors

Use Global Colors

Enables using terminal window color settings from Global settings.

Keyboard

BSisDel

Backspace sends Delete. For details, see SSH Tectia Client User's Manual.

DelisBS

Delete sends Backspace. For details, see SSH Tectia Client User's Manual.

Line Feed

Enter sends CR + LF. For details, see SSH Tectia Client User's Manual.

Lock Function Keys

For details, see SSH Tectia Client User's Manual.

Line Wrap

For details, see SSH Tectia Client User's Manual.

Use Alt as Meta Key

For details, see SSH Tectia Client User's Manual.

Application Keypad

For details, see SSH Tectia Client User's Manual.

Japanese Character Encoding

Specify how the Japanese Kanji characters are encoded by the remote host computer. If the Secure Shell server is running on Windows, you should choose Shift-JIS encoding, while most UNIX servers support EUC-JP encoding as default.

  • EUC-JP: Use the EUC-JP encoding system.

  • JIS: Use the JIS 7-bit encoding system.

  • Shift-JIS: Use the Shift-JIS encoding system.

Kanji-In

Choose the escape sequence character from the drop-down menu. The escape sequence is a string of characters that is used when double-byte Kanji characters are mixed in a text that uses the 7-bit JIS encoding system.

Possible values for Kanji-in are ^[$@ or ^[$B.

Kanji-Out

Choose the escape sequence character from the drop-down menu. The escape sequence is a string of characters that is used when double-byte Kanji characters are mixed in a text that uses the 7-bit JIS encoding system.

Possible values for Kanji-out are ^[(B or ^[(J.

Use SI/SO for Katakana

Select this checkbox if the remote host computer supports single-byte Katakana for JIS encoding.

Tunneling

X11

Specifies whether to enable X11 tunneling. The host must have X emulation software installed. For details, see SSH Tectia Client User's Manual.

Forward Agent in SSH2

Specifies whether to enable Authentication Agent forwarding for SSH2 connections. For details, see SSH Tectia Client User's Manual.

Forward Agent in SSH1

Specifies whether to enable Authentication Agent forwarding for SSH1 connections. For details, see SSH Tectia Client User's Manual.

Forward SSH1 agent in SSH2

Specifies whether to enable SSH1 Authentication Agent forwarding for SSH2 connections. For details, see SSH Tectia Client User's Manual.

Outgoing tunnels

Configures the port forwardings (tunnels) created from client to server for this profile. For details, see SSH Tectia Client User's Manual.

  • Display name

  • Type

  • Listen port

  • Local connection only

  • Destination host

  • Destination port

Incoming tunnels

Configures the port forwardings (tunnels) created from server to client for this profile. For details, see SSH Tectia Client User's Manual.

  • Display name

  • Type

  • Listen port

  • Destination host

  • Destination port

File Transfer

Detect Windows Version String

Enables detection of the Windows host type from the version string if the host does not report its type. For details, see SSH Tectia Client User's Manual.

Host Type

Default server host type used for ASCII transfers if it cannot be determined. For details, see SSH Tectia Client User's Manual.

Global Settings

The global settings affect all connections made with SSH Tectia Client 4.x.

General

name

Name of the configuration. The name will be used in the management system only; it does not affect how the client operates.

description

Description of the configuration. The description will be used in the management system only; it does not affect how the client operates.

comment

A free form comment field that is included in the generated configuration files. The value of this field is always quoted so that it is never interpreted as configuration.

Firewall

Firewall URL

Specifies the firewall settings in the URL format. Also HTTP can be used instead of SOCKS.

Example URL (a SOCKS server with directly connected networks):

socks://fw.example.com:1080/127.0.0.0/8,192.168.0.0/16

SOCKS Version

Specifies the SOCKS version to be used.

External Keys

Disconnect Automatically When Token Is Removed

For details, see SSH Tectia Client User's Manual.

Connect Automatically When Token Is Reinserted

For details, see SSH Tectia Client User's Manual.

Seconds To Wait Before Disconnecting

For details, see SSH Tectia Client User's Manual.

Custom Keys

Identity Key File

The name of the user's key file used in public key authentication. If multiple Identity Key File options are defined, all are used in authentication. Additional key files can still be given from the command line.

Connection

Connection Timeout

For details, see SSH Tectia Client User's Manual.

File Transfer

Show hidden files

Specifies whether to show hidden files. Please see SSH Tectia Client documentation for details.

Show Root Folder

For details, see SSH Tectia Client User's Manual.

Confirm Overwrite

For details, see SSH Tectia Client User's Manual.

List Display Mode

For details, see SSH Tectia Client User's Manual.

Close Progress Dialog on success

For details, see SSH Tectia Client User's Manual.

Upload-Download Directory

For details, see SSH Tectia Client User's Manual.

Application to Execute

For details, see SSH Tectia Client User's Manual.

Time Formatting

For details, see SSH Tectia Client User's Manual.

Transfer Mode

For details, see SSH Tectia Client User's Manual.

ASCII Extensions

For details, see SSH Tectia Client User's Manual.

Advanced

Preserve file time

For details, see SSH Tectia Client User's Manual.

Preserve Original File Permissions

For details, see SSH Tectia Client User's Manual.

Default File Permissions

Specifies the default permissions for files created by file transfers. The value should be between 0 and 777. Default is 644.

Default Directory Permissions

Specifies the default permissions for directories created by file transfers. The value should be between 0 and 777. Default is 755.

Number of Buffers

The number of buffers used in a file transfer. The default value is 10.

Buffer Size

The default buffer size (measured in kilobytes). The default value is 32 kilobytes.

Automatically Upload Locally Edited Remote Files

This selection affects how SSH Tectia Client will react if you edit locally a file stored on the remote host computer.

  • Yes - the locally modified file is uploaded to the remote host computer.

  • No - the locally modified file is not uploaded to the remote host computer.

  • Ask - SSH Tectia Client asks whether to upload a locally modified file.

Maximum Number of Simultaneous Transfers

For details, see SSH Tectia Client User's Manual.

Notify about errors

For details, see SSH Tectia Client User's Manual.

Filebar button mode

For details, see SSH Tectia Client User's Manual.

Security

Empty clipboard on exit

For details, see SSH Tectia Client User's Manual.

Empty scrollback buffer on session close

For details, see SSH Tectia Client User's Manual.

SSH1 connections

For details, see SSH Tectia Client User's Manual.

Disable password length masking in SSH1 Connections

For details, see SSH Tectia Client User's Manual.

Cert.RSA.Compat.HashScheme

An advanced PKI option that defines the hash scheme used for pre-3.2.9 versions when signing with an RSA private key during certificate authentication.

FIPS mode

Specifies whether to use the FIPS (U.S. Federal Information Processing Standard) 140-2 certified SSH Cryptographic Library. By default, the standard SSH Cryptographic Library is used. Please see SSH Tectia Client documentation for details.

StrictModes

Specifies whether client should check the file modes of credentials during public-key authentication. Specifically, this checks the %USERPROFILE%\Application Data\SSH directory and private keys for invalid permissions. Access must not be allowed for anyone else except the user, system, and administrators. This option is supported in SSH Tectia Client 4.3.5 and later.

Command-Line Client

name

Name of the configuration. The name will be used in the management system only; it does not affect how the client operates.

description

Description of the configuration. The description will be used in the management system only; it does not affect how the client operates.

comment

A free form comment field that is included in the generated configuration files. The value of this field is always quoted so that it is never interpreted as configuration.

contents

The contents of the command-line tool configuration file.