Remote Access (Beta)
Introduction
This article provides information about the Remote Access Feature of Torizon Platform Services. It also guides you through the process of enabling and using the Remote Access feature.
Why Use Remote Access
Remote accessing your device have interesting advantages. It allows you to access, via ssh, the terminal of your TorizonCore target device, enabling you to test, launch and manage your system without physical connection, minimizing the cost with on-site visits. Furthermore, this feature can be important to:
- Troubleshoot: Remote access allows you to troubleshoot and debug your applications remotely.
- Maintenance: Remote access allows you to perform maintenance tasks on your device without having to physically access it.
How to Use Remote Access
Preparation
- Use a host computer with Linux terminal and a SSH Key generation tool.
- Get an account on https://app.torizon.io with access to the feature. Check the comercial plans for more information.
- Get a Toradex SoM with TorizonCore installed and running. This will be your target device.
- Provision the target device in Torizon Platform. Follow the instructions under Provisioning a Device.
1. Enable the Remote Access on Torizon Platform Services
Remote Access is currently on beta. Before using it, make sure you have enabled Early Access Features in your Torizon Platform Services account.
2. Enable the Remote Access on the Target Device
2.1. Remote Access is pre-built in TorizonCore images from 6.3 onwards and configured as a systemd service. To enable and start the service, run:
# sudo systemctl enable remote-access
# sudo systemctl start remote-access
2.2. Make sure your target device is connected to a network with internet access. As the connections are always outbound from the module, no special configurations are needed in the network where the module is connected. Ensure that the port 22 of the module is not blocked nor in use. For more details on network requirements for Torizon Platform Services, check the Device Management section.
3. Create an SSH Key on Your Host Computer
Generate a ssh-rsa public key on the host computer from where you are going to remote access the target device. You can use ssh-keygen like the following example:
$ ssh-keygen -t rsa
Generating public/private `rsa` key pair.
Enter file in which to save the key (/home/torizon/.ssh/id_rsa):
Created directory '/home/torizon/.ssh'.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/torizon/.ssh/id_rsa
Your public key has been saved in /home/torizon/.ssh/id_rsa.pub
Check and note down the public key generated:
$ cat ~/.ssh/id_rsa.pub
4. Add the SSH Key to Torizon Platform Services
4.1. Access your account on https://app.torizon.io and click on the Remote Access Manager tab.
4.2. Paste the public key generated in Step 2 into Remote Access Management and click Add Key after adding a friendly name. To verify that everything went well, check the saved SSH Keys right below on the page.
5. Connecting to a Remote Device
5.1. On https://app.torizon.io, go to the Devices page, click on your provisioned device and then, on Remote Shell to start the section.
5.2. Copy the command printed on the screen to the terminal on your host computer to remotely connect to the device. The command will be simillar to the following example:
# ssh -p <port> torizon@ras.torizon.io
Alternativelly, if you have multiple keys setup on your host computer and/or your Torizon Platform account, you can use the following command to specify which key to use:
# ssh -v -o "IdentitiesOnly=yes" -i <your_key_filename> -p <port> torizon@ras.torizon.io
5.3. After you have finished your remote session, get back to the Remote Access Manager on the Account page and close your session at the bottom of the page, on the Active Remote Sessions.