Page Comparison

Step-by-step guide

1. Start OpenSSH Server

   Code Block
   language powershell theme RDark
   C:\ProgramData\checkmk\agent\plugins> net start sshd

   
   

2. Create SSH Key pair

   Code Block
   language bash theme RDark
   C:\ProgramData\checkmk\agent\plugins> ssh-keygen

   
   

3. 
   
   
   

4.  Create the file 'authorized_keys' in C:\Users\<USERNAME>\.ssh\

   Code Block
   language powershell theme RDark
   fsutil file createnew authorized_keys 2000

   
   

   • Put in the public key from Checkmk Site User
     
     

5. Now you can log in without a password to the Windows machine

   Code Block
   language bash theme RDark
   OMD[mysite]:~$ ssh IEUser@192.168.2.106 Microsoft Windows [Version 10.0.17763.379] (c) 2018 Microsoft Corporation. Alle Rechte vorbehalten. ieuser@MSEDGEWIN10 C:\Users\IEUser>

   
   

6. Modify the authorized_keys on the Windows Host and restrict access to the execution on the agent

   Code Block
   language bash theme RDark
   command="\C":\\Program Files (x86)\\checkmk\\service\\check_mk_agent.exe\" test" ssh-rsa AAAAC3NzaC1lZDI1NTE5AAAAIGb6AaqRPlbEmDnBkeIW3Q6Emb5lr2QEbWEQLmA5pb48 mysite@mycmkserver

   
   

7. Go to Checkmk and configure a special agent for the Windows Hosts

   • Setup → Agents → Other integrations → Individual program call instead of agent access → Add rule
     
     

8. Modify the Datasource of the Windows Host
   
   

   • Setup → Hosts → Properties of host
     
     

     
     

9. Now you can stop the Checkmk Agent Service on the Windows Host

   Code Block
   language bash theme RDark
   net stop CheckMkService

   
   

10. Diagnosis

    Code Block
    language bash theme RDark
    OMD[mysite]:~$ cmk -d Windows_SSH |more <<<check_mk>>> Version: 1.6.0p19 BuildDate: Nov 16 2020 AgentOS: windows Hostname: MSEDGEWIN10 Architecture: 64bit or via SSH OMD[mysite]:~/$ ssh IEUser@192.168.2.128 " " or OMD[mysite]:~/$ ssh -T IEUser@192.168.2.128

    
    

Related articles