Access to the nevisAppliance

SSH access

The nevisAppliance features an SSH daemon which listens on the intranet interface (eth0) by default. You can adapt the SSH configuration file /etc/ssh/sshd_config if required.

Local administrator

The nevisAppliance features local users that have SSH access. Set the password for these users after installing a nevisAppliance.

• root

  The root user is the default user for the initial server configuration. You can deny SSH access or restrict access for this user by using public keys only and modifying the /etc/ssh/sshd_config file. The home directory of the root user is not persistent, except for the /root/.ssh directory.

• nvluser

  The nvluser user is the local server administrator. This user can execute any command with root privileges by using the sudo command. The user can also set cron jobs. All files within the home directory /home/nvluser are persistent.

• nvbuser

  The nvbuser user is the local Nevis administrator. This user can execute Nevis commands, such as nevisproxy restart, using the sudo command. The user can access the log files and set cron jobs. All files within the home directory /home/nvbuser are persistent.

• nvsuser

  The nvsuser is a local support user with read access to the configuration and log files. All files within the home directory /home/nvsuser are persistent.

Externally managed users

The nevisAppliance can be connected to a user directory, like an LDAP server or an Active Directory server. You can use these existing infrastructures to manage access to your nevisAppliances. For detailed setup instructions, see Externally managed nevisAppliance administrators using LDAP or ActiveDirectory.