You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/cloudflare-one/connections/connect-networks/use-cases/ssh/ssh-infrastructure-access.mdx
+4-7Lines changed: 4 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -200,10 +200,7 @@ Failure to connect to your SSH endpoint could be the result of multiple variable
200
200
201
201
### 1. Review Access policies
202
202
203
-
A user may be blocked by an Access policy from reaching an SSH target because:
204
-
205
-
- An Access policy exists that denies that user access, or
206
-
- No explicit allow Access policy exists and Access is set to deny the user by default.
203
+
A user may be blocked by an Access policy from reaching an SSH target because no explicit allow Access policy exists and Access is set to deny the user by default.
207
204
208
205
:::note[Access policies and infrastructure applications]
209
206
@@ -241,7 +238,7 @@ You will need Cloudflare dashboard access and log view [permissions](/cloudflare
241
238
242
239
3. Review the **Decision**. If the **Decision** is `Access denied`, select the application and copy the name under App.
243
240
244
-
If the decision is `Access granted`, Access policies are not interfering with your connection attempts and your connection issue is due to the Cloudflare Tunnel, the SSH server, or the `sshd_config` file.
241
+
If the decision is `Access granted`, Access policies are not interfering with your connection attempts and your connection issue is due to the Cloudflare Tunnel, the target SSH machine, or the `sshd_config` file.
245
242
246
243
4. Go to **Access** > **Applications**.
247
244
@@ -251,7 +248,7 @@ You will need Cloudflare dashboard access and log view [permissions](/cloudflare
251
248
252
249
7. Go to [**Policies**](/cloudflare-one/policies/access/policy-management/#test-your-policies) to review what criteria may be blocking the user.
253
250
254
-
By editing a [policy](/cloudflare-one/policies/access/)that is explicitly blocking the user or adding a new policy to explicitly allow the user, the connection issue should be resolved. After saving your policy changes, attempt to connect to the target machine as the end user.
251
+
By adding an Access [policy](/cloudflare-one/policies/access/)to allow the user, the connection issue should be resolved. After saving your policy changes, attempt to connect to the target machine as the end user.
255
252
256
253
If you are still having connection issues after auditing your Access policies, review tunnel health in the following step.
257
254
@@ -446,7 +443,7 @@ The next steps will walk you through a troubleshooting regimen. You will tempora
446
443
447
444
:::caution[You may lose access to your SSH server]
448
445
449
-
These troubleshooting steps could result in you being locked out of your SSH server because your existing auth may rely on existing configuration that is not in the [example file](#review-your-sshd_config-file-for-misconfigurations). Proceed with utmost caution.
446
+
These troubleshooting steps could result in you being locked out of your SSH server because your current SSH session may rely on existing configuration that is not in the [example file](#review-your-sshd_config-file-for-misconfigurations). Proceed with utmost caution.
0 commit comments