Installing on AIX
On the CD-ROM, the AIX binaries are located in the directory
/install/aix/. Separate packages are available for AIX 4.3 and for AIX 5L. Please read the
README file for any important last-minute information.
Note: You need GNU
gzip in order to install SSH Tectia Server on AIX.
To install SSH Tectia Server on AIX, do the following:
- (Not necessary in "third-digit" maintenance updates.) Copy the license file as instructed in Section Licensing.
- (If installing from CD-ROM.) Copy the installation package to your machine.
- Unpack the package using the following command:
$ gzip -d ssh-secure-shell-<v>-<aix-v>.bff.gz
In the command,
<v> is the current package version of SSH Tectia Server (for example,
<aix-v> is the version of the AIX operating system (
- Install the package by issuing the following command with root privileges:
# installp -d ssh-secure-shell-<v>-<aix-v>.bff SSH.Secure.Shell
If you only want to apply the package (and not commit it), give the following command:
# installp -a -d ssh-secure-shell-<v>-<aix-v>.bff SSH.Secure.Shell
Packages which are applied but not committed can be rejected later on. This is useful if you have a previous version installed (
lslpp -l SSH.Secure.Shell). Please read the AIX manual pages for more information about the
installp command. You can also install the package using
- The installation should (re)start the server daemon automatically. If the daemon does not start (because of a missing license, for example), you can start it after correcting the problem by issuing the command:
# /etc/ssh2/sshd2 restart
Enabling FIPS (Optional)
For a list of platforms on which the FIPS library has been validated or tested, see SSH Tectia Client/Server Product Description.
To enable the FIPS-certified mode, run the following command:
# /usr/local/sbin/ssh-crypto-library-chooser fips
This will set the library symlinks, so that
ssh2 will use the FIPS-certified crypto library. You can change back to using the standard crypto library by running the following command:
# /usr/local/sbin/ssh-crypto-library-chooser std
You can query the current library status by running the script without arguments. This will show the current symlink target (