Using Interactive Mode

Prerequisites

  1. Download EZSSH
  2. Have at least one policy with endpoints

Tenant Prerequisites

The following prerequisites have to be done only once per tenant.

  1. Registering the application in your tenant
  2. Selecting a Plan

Starting Interactive Mode

The easiest way to explore your resources and connect to them is using EZSSH Interactive mode.

  1. First run the following command in your favorite terminal:
ezssh i
  1. This command will start ezssh in interactive mode. EZSSH Interactive
  2. This will show you 5 different options, let’s explore each one.

List My Policies

  1. Press 0 to List the policies you own or have access to. EZSSH Interactive
  2. This will list the policy name, and whether it is a Hybrid or Azure Policy. You can learn the difference between the two
  3. Select the policy you want to explore
  4. This will give you two options List policy’s endpoints and Download policy’s endpoints to csv (for batchssh)

List Endpoints

  1. List endpoints will give you a list of all the endpoints available in that policy (One endpoint might have multiple rows if it has different Linux user principals in the policy)
  2. Enter the number of the endpoint you want to connect or the number for going back to the policy menu. EZSSH Interactive
  3. If you use Azure Networking JIT EZSSH can make the request to open it for you. Enter y for opening a JIT request. Press enter to skip.
  4. EZSSH defaults to try to connect to port 22, if your endpoint uses another port, enter the port number. Press enter to skip.
  5. EZSSH works on the Just In Time methodology of just giving users access for the time they need, enter the number of hours you need access to the machine. It defaults to the maximum allowed time for that machine. Press enter for the default value.
  6. SSH session will start in another window.

Download policy’s endpoints to csv (for batchssh)

Download policy endpoints gives you the option of saving the policy endpoints into a CSV that can then be used to connect to multiple endpoints at once

  1. Select the “Download policy endpoints” EZSSH Interactive
  2. After downloading the CSV follow the batchssh instructions to connect to multiple endpoints at once.

List Active Requests

List Active Request is the easiest way to connect to endpoints you have already requested access to.

  1. List Active requests will list any endpoint you currently have access to. EZSSH Interactive
  2. Select any of the active requests to connect to that endpoint.
  3. If you use Azure Networking JIT EZSSH can make the request to open it for you. Enter y for opening a JIT request. Press enter to skip.
  4. EZSSH defaults to try to connect to port 22, if your endpoint uses another port, enter the port number. Press enter to skip.
  5. EZSSH works on the Just In Time methodology of just giving users access for the time they need, enter the number of hours you need access to the machine. It defaults to the maximum allowed time for that machine. Press enter for the default value.
  6. SSH session will start in another window. EZSSH Interactive

List Recent Requests

In Keytos we understand that most users always connect to the same endpoints. List Recent Requests, will list the 10 most recent requested endpoints.

  1. Select the endpoint you want to connect to.
  2. If you use Azure Networking JIT EZSSH can make the request to open it for you. Enter y for opening a JIT request. Press enter to skip.
  3. EZSSH defaults to try to connect to port 22, if your endpoint uses another port, enter the port number. Press enter to skip.
  4. EZSSH works on the Just In Time methodology of just giving users access for the time they need, enter the number of hours you need access to the machine. It defaults to the maximum allowed time for that machine. Press enter for the default value.
  5. SSH session will start in another window.
    EZSSH Interactive

List Available Endpoints

List Available endpoints will list all the endpoints that you have access to and allow you to connect to them.

  1. Select the endpoint you want to connect to.
  2. If you use Azure Networking JIT EZSSH can make the request to open it for you. Enter y for opening a JIT request. Press enter to skip.
  3. EZSSH defaults to try to connect to port 22, if your endpoint uses another port, enter the port number. Press enter to skip.
  4. EZSSH works on the Just In Time methodology of just giving users access for the time they need, enter the number of hours you need access to the machine. It defaults to the maximum allowed time for that machine. Press enter for the default value.
  5. SSH session will start in another window. EZSSH Interactive

Save all Available Endpoints as CSV

Save all Available Endpoints as CSV gives you the option of saving all your available endpoints into a CSV that can then be used to connect to multiple endpoints at once

  1. To Save all your endpoint to a CSV select option 4 EZSSH Interactive
  2. After downloading the CSV follow the batchssh instructions to connect to multiple endpoints at once or use the Connect to Multiple Endpoints from CSV option from the interactive menu.

Connect to Multiple Endpoints from CSV

If you Downloaded your policy’s endpoints as CSV or saved all your available endpoints as CSV you can use the batchssh command to connect to multiple endpoints or press option 5 in interactive mode.

  1. Once you selected the “Connect to multiple endpoints from CSV” option, enter the file path of where the file is saved.
  2. EZSSH will start a session to each of the endpoints in the CSV in another window. EZSSH Interactive