Your browser does not support HTML5 local storage or you have disabled it. Some functionality on this site, including saving your privacy settings and offering you special discounts, uses local storage and may not work with local storage disabled. We recommend allowing the use of local storage in your browser. In some browsers, it is the same setting used for disabling cookies.
On the CD-ROM, the AIX binaries are located in the directory /install/aix/. Separate packages are available for AIX 4.3 and for AIX 5L. Please read the README file for any important last-minute information.
Note: You need GNU gzip in order to install SSH Tectia Server on AIX.
To install SSH Tectia Server on AIX, do the following:
(Not necessary in "third-digit" maintenance updates.) Copy the license file as instructed in Section Licensing.
(If installing from CD-ROM.) Copy the installation package to your machine.
Unpack the package using the following command:
$ gzip -d ssh-secure-shell-<v>-<aix-v>.bff.gz
In the command, <v> is the current package version of SSH Tectia Server (for example, 126.96.36.199) and <aix-v> is the version of the AIX operating system (aix4.3 or aix5.x).
Install the package by issuing the following command with root privileges:
If you only want to apply the package (and not commit it), give the following command:
# installp -a -d ssh-secure-shell-<v>-<aix-v>.bff SSH.Secure.Shell
Packages which are applied but not committed can be rejected later on. This is useful if you have a previous version installed (lslpp -l SSH.Secure.Shell). Please read the AIX manual pages for more information about the installp command. You can also install the package using smit.
The installation should (re)start the server daemon automatically. If the daemon does not start (because of a missing license, for example), you can start it after correcting the problem by issuing the command:
# /etc/ssh2/sshd2 restart
Enabling FIPS (Optional)
For a list of platforms on which the FIPS library has been validated or tested, see SSH Tectia Client/Server Product Description.
To enable the FIPS-certified mode, run the following command:
# /usr/local/sbin/ssh-crypto-library-chooser fips
This will set the library symlinks, so that sshd2 and ssh2 will use the FIPS-certified crypto library. You can change back to using the standard crypto library by running the following command:
# /usr/local/sbin/ssh-crypto-library-chooser std
You can query the current library status by running the script without arguments. This will show the current symlink target (libsshcrypto-std or libsshcrypto-fips).