Your browser does not allow storing cookies. We recommend enabling them.

SSH Tectia

Chapter 2 Installing Management Server

SSH Tectia Manager consists of the following main components:

Management Server

The Management Server runs the management logics, stores the configuration and environment information, and provides management communications to the managed hosts. The installation and initial configuration of the server are described in Installing the Management Server Software and Initial Configuration for Management Server.

The Management Server software includes a built-in, hardened web server. SSH Tectia administrators manage the environment via TLS-protected web-based administration interfaces. The administrators may use remote workstations to connect to the Management Server via a standard web browser.

Management Database

SSH Tectia Manager uses an SQL database to store the host environment structure, host information, host public keys, SSH Tectia Client and Server configurations, and the administrator audit logs.

Alternatively, an existing installation of an Oracle database can be used via the built-in Oracle client functionality. Setting up the Oracle database with SSH Tectia Manager is described in Using an Oracle Database.

Distribution Server

In very large environments (over two thousand hosts), Distribution Servers may be deployed within local subenvironments to share the load of management operations. Distribution Servers act as management connection proxies for the managed hosts, concentrating management connections and caching binaries and configuration files for distribution. They are low-maintenance software components with no management database or user interface, and can be deployed and configured by the Management Server. The installation and setup of Distribution Servers are described in Chapter 6.

Management Agent

To enable the management of the remote hosts, a software component called Management Agent needs to be installed onto the hosts. The installation is described in Chapter 5.

The Management Agent requires a data file called the Initial Configuration Block (ICB). The SSH Tectia administrator creates the ICB on the Management Server and it is delivered to the managed hosts along with the Management Agent software. For more information, see Managing Initial Configuration Blocks (ICBs).

SSH Tectia Manager components

Figure 2.1. SSH Tectia Manager components

This chapter contains instructions on installing the Management Server of SSH Tectia Manager.




What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.

    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now
  • ISACA Practitioner Guide for SSH

    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now