- What's New
- Function Overview
- Service Overview
- Getting Started
-
User Guide
- Common Operations
- Instance
- Image
-
Disk
- Disk Types
- Attaching Data Disks
-
Initializing Data Disks
- Introduction to Data Disk Initialization Scenarios and Partition Styles
- Initializing a Windows Data Disk (Windows Server 2016)
- Initializing a Linux Data Disk (fdisk)
- Initializing a Linux Data Disk (parted)
- Initializing a Windows Data Disk Greater Than 2 TB (Windows Server 2012)
- Initializing a Linux Data Disk Greater Than 2 TB (parted)
- Detaching a Disk
- Expanding Disk Capacity
- Key Pair and Password
- Network
- Security
- Resources and Tags
- Server Monitoring
-
Private Image Creation Guide
- Overview
- Preparing the Environment
-
Linux
- Software
- Tools
- Creating a Linux VM
- Installing a Linux OS on the VM
- Modifying the Boot File (UEFI Boot Mode)
-
Configuring the VM Environment
- Overview
- (Optional) Installing Basic Components
- Configuring the Network
- Configuring systemd Timeout Parameters
- Disabling the Firewall
- (Optional) Upgrading Wicked Components
- (Optional) Disabling NetworkManager
- (Optional) Deleting the Network Management Tool Plug-in
- (Optional) Deleting the Local User
- (Optional) Modifying DHCP Configuration Items
- (Optional) Configuring the GRUB Timeout
- Setting the Maximum Number of Handles to 65535.
- Upload Required Software Packages
- Installing Cloud-Init
- Configuring Cloud-Init
- Checking the Cloud-Init Status
- Modifying the Hardware Device Drivers That Boot the OS
- Installing bms-network-config
- Installing the Network Service
- Installing the SDI Driver
- Installing the Hi1822 Driver
- (Optional) Installing the IB driver
- Installing FusionServer/TaiShanServer iDrivers
- (Optional) Installing the Multipath Software
-
Performing Security Configuration
- Modifying SSH Configuration Items
- (Optional) Modifying the Network Script Permission
- (Optional) Modifying the /etc/motd Configuration Item
- Modifying Historical Record Configuration Items
- Optimizing the udev Configuration
- Optimizing SELinux
- Uninstalling denyhosts
- (Optional) Setting Automatic Hostname Update
- (Optional) Installing Common O&M Tools
- (Optional) Setting the Password Validity Period
-
Configuring Remote Login to a BMS
- x86: Oracle Linux 7.3/Oracle Linux 7.4/Red Hat 7/CentOS 7.2/CentOS 7.4/CentOS 7.5/CentOS 7.6
- x86: Oracle Linux 6 series/Red Hat 6 series/CentOS 6
- x86: SUSE 11 SP4
- ARM: CentOS 7
- x86: SUSE 12/SUSE 15/CentOS 7.3/EulerOS/OpenEuler/Oracle Linux 7.2
- ARM: EulerOS/OpenEuler
- x86: Ubuntu 16.04/Ubuntu 18.04
- Arm: Ubuntu 16.04/Ubuntu 18.04
- x86: Ubuntu 14.04/Debian
- Configuring the Root Partition to Be Automatically Extended
- Installing and Upgrading Drivers and Firmware for Ascend BMSs
- Deleting Files
-
Windows
- Preparing Hardware and Software
- (Optional) Installing x86 V5 Server Drivers
- Using Dism++ to Install the VMTools Driver for an ISO File
- Generating a New ISO File
- Creating a Windows VM
- Configuring the VM Environment
- Installing Cloudbase-Init
- (Optional) Installing bms-network-config
- (Optional) Installing the SDI Driver
- Setting the Windows Time Zone
- Setting the Windows Virtual Memory
- (Optional) Configuring Automatic Windows Update
- Configuring the SID
- Stopping the VM and Obtaining the Image
- Converting the Image Format
-
FAQ
- What Can I Do If Packets from the VLAN Subinterface of bond0 of a Linux BMS Use the MAC Address of bond0 as the Source MAC Address?
- What Can I Do If IP Links Are Disconnected Due to the Incorrect Bond Port Mode Configured by the Wicked Module of SUSE 12 SP1?
- How Do I Set the BMS CPU Frequency Governor?
- What Do I Do If Cloudbase-Init Is Stopped on a Provisioned Windows BMS?
- What Can I Do If Data Cannot Be Injected into BMSs Due to cloud-init-local Failures?
- How Do I Activate a Windows BMS?
- How Do I Improve the UDP Packet Performance for x86 EulerOS 2.3?
- How Do I Verify Software Package Integrity?
- Appendix
- Change History
-
API Reference
- Before You Start
- API Overview
- Calling APIs
- BMS APIs
- Native OpenStack Nova V2.1 APIs
- Examples
- Public Parameters
- Permissions and Supported Actions
- Appendix
- Change History
- SDK Reference
-
FAQs
-
General FAQ
- What Restrictions Are There on BMS Use?
- How Are BMSs Different from ECSs?
- What Are the Differences Between BMSs and Traditional Physical Servers?
- What Are the Differences Between BMS and Dedicated Host (DeH)?
- How Do BMSs Ensure Data Security?
- Can I Use APIs to Access BMSs?
- What OS Images Does BMS Support?
- Will Services Be Affected If Hyper-Threading Is Configured for BMS?
- How Do I View and Increase the BMS Quota?
- How Do I Synchronize the Time of a BMS?
-
Instance FAQ
- How Long Does It Take to Create a BMS?
- What Do I Do If I Can't Find My BMS on the Management Console?
- How Can I Obtain board_type of a BMS Flavor?
- Why Is the BMS Creation Task Displayed as Failed But the BMS List Shows the BMS?
- How Do I Create a BMS That Can be Quickly Provisioned?
- What Are the Advanced Features of BMSs Using EVS Disks?
- Can I Transfer a BMS to Another Account?
- Is the BMS Host Name with Suffix novalocal Normal?
- Why Does the System Display a Message Indicating That the BMS Cannot Be Deleted?
- How Do I Monitor BMS Metrics?
- How Do I Create an Agency for Server Monitoring of the BMS?
-
Billing FAQ
- Where Can I Query the BMS Price?
- What Are Pre-payment and Post-payment? How Do I Choose Between Them?
- What Is the Impact on Billing if I Unsubscribe from a BMS?
- How Do I Set Automatic Renewal for BMSs Billed on a Yearly/Monthly Basis?
- When Will a BMS Be Released After It Expires?
- How Do I Unfreeze a BMS?
- Key Pair and Password FAQ
-
Login FAQ
- How Do I Prepare to Log In to a BMS?
- What Can I Do If I Selected the Key Pair Authentication When I Created a BMS But Want to Log In to the BMS Using a Password?
- What Do I Do If I Can't Log In to a Linux BMS?
- What Browser Versions Can Be Used to Remotely Log In to a BMS?
- What Do I Do If the Login Page Does Not Respond?
- What Do I Do If the BMS Console Is Displayed Improperly After I Remotely Log In to a BMS?
- What Do I Do If the Numeric Keypad Does Not Work During Remote Login?
- What Do I Do If the SSH Login or Data Transmission Is Slow?
-
Network and Security FAQ
- Can BMSs of Different Accounts Communicate with Each Other over an Internal Network?
- How Do Two BMSs in the Same Region But in Different AZs Communicate with Each Other?
- Are My BMSs in the Same Subnet?
- Can I Associate a BMS with Multiple Security Groups?
- Can BMSs Communicate with ECSs in the Same VPC?
- What Are the Differences Between the Primary and Extension NICs of BMSs?
- Can I Bind Multiple EIPs to a BMS?
- Can I Configure an EIP?
- Will I Obtain an EIP That Has Been Released?
- What Are the Differences Between EIPs, Private IP Addresses, and Virtual IP Addresses?
- How Can I Modify the Network Configuration or Restart the Network If I Can Log In to a BMS Using Only SSH?
- How Do I Handle the Failure to Ping a CentOS 7 Extension NIC?
- What Do I Do If the Communication Between the Primary NIC and Extension NIC of the BMS is Abnormal?
- How Can I Configure a Static IP Address for a BMS?
- What Do I Do If the Network Performance Is Poor When 128 Ethernet Network Devices Are Bound to a BMS?
-
Disk FAQ
- Can EVS Disks Be Attached to BMSs? How Many Data Disks Can Be Attached to a BMS?
- What Are the Restrictions for Attaching a Disk to a BMS?
- How Do I Know Whether EVS Disks Are Available in a Flavor?
- How Do I Change the Disk Identifier in the fstab file to UUID?
- How Do I Obtain the Drive Letter of an EVS Disk?
- Are the EVS Disk Device Names on the Console and the Device Names in BMS OSs Consistent?
- Why Is the EVS Disk Size Not Updated in the BMS OS After the EVS Disk Capacity Has Been Expanded?
- How Can I Restore System Disk Data Using the Snapshot?
- What Do I Do to Prevent Risks of Attaching or Detaching the System Disk?
- How Do I Select Storage?
- Why Is the Disk Capacity Displayed in the BMS OS Less Than That Displayed on the Official Website?
-
OS FAQ
- Can I Install or Upgrade BMS OSs by Myself?
- Can I Change the OS of a BMS?
- Is a GUI Provided for BMS OSs?
- Is an Upload Tool Delivered with BMS OSs?
- Does the Public Image Used to Create a BMS Have a Swap Partition?
- How Do I Configure the Static Host Name of a BMS?
- How Do I Set the Password Validity Period?
- How Do I Set SSH Configuration Items?
- How Can I Handle the Eight-Hour Difference Between the Windows BMS and Local Time
- How Do I Change the SID of a Windows Server 2012 BMS?
- How Do I Change the Kernel Version of CentOS 7 BMSs?
- How Do I Reserve Log Space If the Root Partition Automatically Expands Disks?
- How Do I Roll Back the Kernel Version If I Mistakenly Upgrade the Kernel?
- How Do I Increase the Swap Partition Size?
- How Do I Increase the Size of the Root Partition of a BMS Which Is Quickly Provisioned?
- Common Linux Commands
- How Do I Update the Disk Metadata After the LVM Volume Is Remounted?
- How Do I Handle a Network Failure After Services Are Switched from a Windows BMS Booted from an EVS Disk to an HA BMS?
-
General FAQ
-
Troubleshooting
- What Do I Do If I Cannot Log In to My BMS or the BMS EVS Disk Is Lost After the BMS Is Started or Restarted?
- What Do I Do If a Key Pair Created Using PuTTYgen Cannot Be Imported to the Management Console?
- What Do I Do If Disks Cannot Be Attached to a BMS That Restarts Abnormally?
- What Do I Do If an EVS Disk Attached to a Windows BMS Is in Offline State?
- Best Practices
- Videos
Show all
How Do I Set SSH Configuration Items?
You can select the BMS login mode or account type. If you require special configuration, perform the following operations:
- To improve security of the BMS, disable remote login using the password and retain only the certificate login mode. Configure the following parameters:
- Check whether the /etc/cloud/cloud.cfg file contains parameter ssh_pwauth and its value is false. If not, add the parameter or change its value to false. This ensures that password cannot be used to log in to the BMS using Xshell.
- Check whether the value of parameter ChallengeResponseAuthentication in the /etc/ssh/sshd_config file is no. If not, change it to no. This ensures that password cannot be entered using the keyboard inactive method to log in to the BMS using Xshell.
- To enable remote login as user root and enable SSH permissions of user root, perform the following operations:
CAUTION:
This operation may cause risks. Exercise caution before performing this operation.
- Modify the Cloud-Init configuration file.
Take CentOS 6.7 as an example. Modify the following parameters:
users: - name: root lock_passwd: false disable_root: 0 ssh_pwauth: 1
In the preceding information:
- If the value of lock_passwd is set to false, user password is not locked.
- disable_root specifies whether to disable remote SSH login as user root. Set the value to 0, indicating that the remote SSH login as user root is enabled (In some OSs, value true indicates disabled and false indicates enabled).
- ssh_pwauth specifies whether to support SSH password login. Set this parameter to 1, indicating that SSH password login is supported.
- Run the following command to open the /etc/ssh/sshd_config file using the vi editor:
vi /etc/ssh/sshd_config
Change the value of PasswordAuthentication in the sshd_config file to yes.
NOTE:
- For SUSE and openSUSE, set PasswordAuthentication and ChallengeResponseAuthentication in the sshd_config file to yes.
- For Ubuntu, set PermitRootLogin to yes.
- Lock the initial password of user root in the image template by modifying the shadow file to prevent risks.
- Run the following command to open the /etc/shadow configuration file using the vim editor:
vim /etc/shadow
Add !! to the password hash value of the root account. The modified configuration file is as follows:
# cat /etc/shadow | grep root root:!!$6$SphQRPXu$Nvg6izXbhDPrcY3j1vRiHaQFVRpNiV3HD/bjDgnZrACOWPXwJahx78iaut1IigIUrwavVGSYQ1JOIw.rDlVh7.:17376:0:99999:7::
- After the configuration file is modified, press Esc and enter :wq to save and exit the file.
NOTE:
For Ubuntu, delete the user created during the OS installation. For example, run the userdel -rf ubuntu command to delete user ubuntu created during OS installation.
- Run the following command to open the /etc/shadow configuration file using the vim editor:
- Modify the Cloud-Init configuration file.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.