Your browser does not allow storing cookies. We recommend enabling them.

Tectia

Invalid Host Key Permissions on Windows

Symptom: Tectia Server fails to start and reports error "Invalid hostkey permissions for hostkey". This occurs usually after upgrading Tectia Server from 4.x to 6.x.

The permissions of the server host key file and directory have been made more strict since the 4.x releases. In 6.x, full permissions are allowed only for the Administrators group and the SYSTEM account, and no other permissions are set at all.

The host key permissions can be updated manually by using the ssh-keygen-g3 tool:

  1. Go to the installation directory of Tectia Server: "C:\Program Files\SSH Communications Security\SSH Tectia"

  2. Set the permissions for the host key by running command:

    $ ssh-keygen-g3 --set-hostkey-owner-and-dacl hostkey

For more information on the tool, see ssh-keygen-g3(1).


 

 
Highlights from the SSH.COM blog:

  • Cryptomining with the SSH protocol: what big enterprises need to know about it

    Cryptomining malware is primarily thought of as targeting desktops and laptops and is used to hijack system resources to mine cryptocurrency.
    Read more
  • SLAM the door shut on traditional privileged access management

    Did you know that something as trivial-sounding as granting access for your developers or third parties to a product development environment can throw a gorilla-sized monkey wrench into your operations and productivity?
    Read more
  • We broke the IT security perimeter

    Everyone understands the concept of a security perimeter. You only gain access if you are identified and authorized to do so.
    Read more