Scanner Access Guide

Guide for configuring SSH access to CyberOptix scanners.

Overview

CyberOptix scanners allow authorized users to connect via SSH for advanced testing and troubleshooting. Access requires both the appropriate user role and an SSH public key.

Prerequisites

User Role: Pen Tester
SSH Key Pair: Generate if you don't have one

Generate SSH Key Pair (Optional)

If you don't already have an SSH key pair, generate one:

# Generate ED25519 key (recommended)
ssh-keygen -t ed25519 -C "[email protected]"

# Or generate RSA key
ssh-keygen -t rsa -b 4096 -C "[email protected]"

Your public key will be saved to ~/.ssh/id_ed25519.pub or ~/.ssh/id_rsa.pub.

Upload SSH Public Key

Step 1: View Public Key

Display your public key:

cat ~/.ssh/id_ed25519.pub

Copy the entire output (starts with ssh-ed25519 or ssh-rsa).

Step 2: Access User Settings

Click your name in the top right corner
Navigate to user settings

Step 3: Upload Public Key

Paste your SSH public key in the designated field and save.

Connect to Scanners

Scanner Username

Your scanner username is the user portion of your email address.

Example:

Email: [email protected]
Scanner Username: john.doe

SSH Connection

Connect to a scanner using:

ssh [email protected]

Replace john.doe with your username and scanner-hostname.cyberoptix.io with the actual scanner hostname provided by CyberOptix.

User Role Requirements

Only users with the Pen Tester role can access scanners. If you need scanner access:

Verify your user role in CyberOptix
Contact your organization administrator if role change is needed
Upload your SSH public key after role assignment

SSH Key Best Practices

Use ED25519 keys - More secure and faster than RSA
Protect private keys - Never share your private key file
Set passphrase - Add an additional layer of security
Rotate keys - Update keys periodically for security
One key per device - Use separate keys for different workstations