Knowledge Base

Monitoring Using Public Key Infrastructure (PKI)

by Community Manager on 07-06-2011 01:58 PM - last edited on 10-13-2011 03:02 PM

Introduction

Public Key Infrastructure (PKI) can be used as an alternative to passwords. Usually this decision is made by your network administrator.

There are two pieces to a PKI setup (known as a key pair):

  • a public key that is stored on the server(s) you want to monitor
  • a private key that is stored inside the SOASTA CloudTest server

You have the choice of either generating your own key pair, or using the key pair that is bundled with your SOASTA CloudTest server. This decision is usually made by your network administrator.

Note: While using PKI replaces using a password, you still need a user name that corresponds to an account on the server being monitored.

  

Generating Your Own Key Pair (Admin)

The generation of public key pairs is an administrative and operating system-specific task. If you choose to generate your own key pair, you must do the following:

  1. Add the public key to the "authorized keys" list on the server(s) you wish to monitor. If you are not sure how to do this, consult your operating system documentation.

 

Using a Key Pair in a Monitor Server Group

The following steps describe how to use either a user generated key pair or the key pair bundled with CloudTest in a Monitor Server Group.

    1. In the Central list, select Monitoring Server Groups.

  1. After selecting Monitoring Servers from the Navigator, click the New icon.

New Monitor Server Group icon
  1. The Monitoring Server / Monitor wizard appears. Select Monitor Server and click Next.

    1. The Name and Connection step is shown. Enter the Monitor Server Group name, a brief description, and enter one or more host names of servers to monitor.

The host(s) should be the server(s) for which a key pair has been implemented by the Administrator. Click Next.

  1. The Resources step is shown. Select the System Resources category and click Next.

The System Resource Type and Authentication screen appears.

  1. Select the correct operating sytem.
  2. Click the Public/private key button.
  3. Enter a user name.
  4. Choose a key specification type from among:
    • Allow me to provide the private key
    • Use auto-generated public key.

  • If you chose Allow me to provide the private key, then enter the private key into the key field. If you chose to enter a passphrase when you generated the key pair, enter this as well.

    • If you chose Use auto-generated public key the SOASTA CloudTest server's public key will be displayed. Add this public key to the "authorized keys" list on the server(s) you wish to monitor. If you are not sure how to do this, consult your operating system documentation.

  1. Scroll down and click the Test Connection button to ensure everything is working properly. Click Next.
  

 
  1. The Summary screen appears. Optionally, check the box to create a monitor from the monitor server. Click Finish.

0