some questions about Auto-registration and "secure ssh access" (for "push updates")

[leoni...@gmail.com]

hi,

 

1) I installed Openwisp using Ubuntu server hostname and not its IP address (both in inventory file and playbook).

When I installed the Openwisp agent on an Openwrt access pont, as indicated at https://openwisp.io/docs/user/configure-device.html, in the url field I had to use that server host name but self registration of the AP in the organization was not working. To solve I had to insert a line in the hosts file of the ap. Is it possible to avoid this and use the ip address instead?

Should I install Openwisp using the ip address of the Ubuntu server in both the inventory file and the playbook? If so, how can I change if the server has to change ip for any reason?

 

2) I had to configure the "secure ssh access" (for "push updates")  as indicated in https://openwisp.io/docs/user/configure-push-updates.html#generate-ssh-key

I saw that in Network Device Credentials \ Access credentials there was already an SSH private key called "OpenWISP Default" but I could not find the corresponding public key to be distributed later with the template as indicated in point 3. For this reason I deleted "OpenWISP Default" and I did everything from the beginning starting from point 1. Everything went well and in fact as indicated in point 4 I changed the name of the ap in the Openwisp device section and after a while in fact I found this change on it ap.

Except that if I go to the / etc / dropbear folder of that ap, I don't find the authorized_keys file but only the dropbear_rsa_host_key file that already existed. Why?

 

thank you all

[Federico Capoano]

Hi,

On Thu, Mar 11, 2021 at 1:36 PM <leoni...@gmail.com> wrote:

1) I installed Openwisp using Ubuntu server hostname and not its IP address (both in inventory file and playbook).

When I installed the Openwisp agent on an Openwrt access pont, as indicated at https://openwisp.io/docs/user/configure-device.html, in the url field I had to use that server host name but self registration of the AP in the organization was not working. To solve I had to insert a line in the hosts file of the ap. Is it possible to avoid this and use the ip address instead?

Should I install Openwisp using the ip address of the Ubuntu server in both the inventory file and the playbook? If so, how can I change if the server has to change ip for any reason?

I suggest to deploy using a DNS name if it's hosted on the internet, if it's not hosted on the internet, you can use /etc/hosts and manage the /etc/hosts with a template.

It should be possible to also use the IP directly.

 

2) I had to configure the "secure ssh access" (for "push updates")  as indicated in https://openwisp.io/docs/user/configure-push-updates.html#generate-ssh-key

I saw that in Network Device Credentials \ Access credentials there was already an SSH private key called "OpenWISP Default" but I could not find the corresponding public key to be distributed later with the template as indicated in point 3.

That's strange, maybe there was already something mentioning /etc/dropbear/authorized_keys?

 

For this reason I deleted "OpenWISP Default" and I did everything from the beginning starting from point 1. Everything went well and in fact as indicated in point 4 I changed the name of the ap in the Openwisp device section and after a while in fact I found this change on it ap.

Except that if I go to the / etc / dropbear folder of that ap, I don't find the authorized_keys file but only the dropbear_rsa_host_key file that already existed. Why?

 Did you add the SSH key to a template?

Best regards

Federico