18.2.3. Procedure – Performing inband gateway authentication in SSH and Telnet connections

Steps: 

  1. Initiate a connection from a client. If gateway authentication is required for the connection, PSM will pause the connection.

  2. PSM requests the username used for gateway authentication. Enter your gateway username into the Gateway username prompt. If password authentication is used, provide the password for the gateway user as well.

  3. The login prompt for the remote server is displayed. Enter your username used on the remote server into the Username prompt. If password authentication is used, provide the password for the username as well.

    Warning

    If the username used within the protocol to access the remote server is different from the username used to perform gateway authentication, usermapping must be configured for the connection. For details on usermapping, see Procedure 18.1, Configuring usermapping policies.

    Note

    When initiating the connection, you can use the following as your username: gu=gatewayusername@remoteusername, where gatewayusername is the username you will use to authenticate on PSM and remoteusername is the username you will use on the remote server. That way you do not have to provide the usernames in the prompt, only the passwords if password authentication is used.

    If PSM is configured to require client-side authentication, the gatewayusername user must authenticate on the client side.