You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/cloudflare-one/connections/connect-networks/use-cases/ssh/ssh-infrastructure-access.mdx
+7-7Lines changed: 7 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -223,11 +223,11 @@ As an end user, run [`warp-cli target list`](/cloudflare-one/applications/non-ht
223
223
224
224
- If the target appears in the list, confirm that the username you are attempting to connect with is shown in the output. If the username is not shown, an administrator must find the Access policy associated with the target machine and add that username to the Access policy. An administrator should have created an Access policy in [substep 9 of step 5: Add an infrastructure application](/cloudflare-one/connections/connect-networks/use-cases/ssh/ssh-infrastructure-access/#5-add-an-infrastructure-application). If the username is shown, that means the Access policy should be granting access and you should ensure that the tunnel is healthy in [step 2](/cloudflare-one/connections/connect-networks/use-cases/ssh/ssh-infrastructure-access/#2-check-target-machine-connection).
225
225
226
-
- If the target does not appear in the list, an administrator must audit your organization's policies for the target machine in the Zero Trust dashboard for potential misconfigurations that may be blocking access.
226
+
- If the target does not appear in the list, an administrator must audit the Access policies for the target machine in the Zero Trust dashboard for potential misconfiguration that may be blocking connection.
227
227
228
228
#### Administrators
229
229
230
-
As an admin, instead of running `warp-cli target list`, you can use the Access logs to review if an Access policy is causing connection issues. Reviewing logs is useful when troubleshooting connection issues on behalf of the end user.
230
+
As an admin, instead of running `warp-cli target list` on the end user device, you can use the Access logs to review if an Access policy is causing connection issues. Reviewing logs is useful when troubleshooting connection issues on behalf of the end user.
231
231
232
232
:::note
233
233
@@ -241,7 +241,7 @@ You will need Cloudflare dashboard access and log view [permissions](/cloudflare
241
241
242
242
3. Review the **Decision**. If the **Decision** is `Access denied`, select the application and copy the name under App.
243
243
244
-
If the decision is `Access granted`, Access policies are not interfering with your connection attempts and your connection issue is due to the Cloudflare Tunnel, SSH server, or the `sshd_config` file.
244
+
If the decision is `Access granted`, Access policies are not interfering with your connection attempts and your connection issue is due to the Cloudflare Tunnel, the SSH server, or the `sshd_config` file.
245
245
246
246
4. Go to **Access** > **Applications**.
247
247
@@ -262,12 +262,12 @@ If the end user cannot connect to the target SSH machine, the tunnel you set up
262
262
To check the status of your Tunnel:
263
263
264
264
1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Networks** > **Routes**.
265
-
2. Search your IP to find the Tunnel associated with the IP.
265
+
2. Search your IP to find the tunnel associated with the IP.
266
266
267
267
This IP will be visible in the `warp-cli target list` output in [the previous step](#1-review-access-policies). If you are an admin, you can also go to **Networks** > **Targets** and find the IP next to your Hostname.
268
268
269
-
3. Copy the Tunnel name.
270
-
4. Go to **Networks** > **Tunnels** and search by your Tunnel name.
269
+
3. Copy the tunnel name.
270
+
4. Go to **Networks** > **Tunnels** and search by your tunnel name.
271
271
5. Review that the [Tunnel status](/cloudflare-one/connections/connect-networks/monitor-tunnels/notifications/#available-notifications) says `Active`, and not `Down`, `Degraded`, or `Inactive`.
272
272
273
273
| Status | Meaning | Recommended Action |
@@ -462,7 +462,7 @@ These troubleshooting steps could result in you being locked out of your SSH ser
462
462
vi /etc/ssh/sshd_config
463
463
```
464
464
465
-
3. Enter insert mode by pressing the 'i' key on your keyboard.
465
+
3. Enter insert mode by pressing the `i` key on your keyboard.
466
466
467
467
4. Paste in the [example file](#review-your-sshd_config-file-for-misconfigurations).
0 commit comments