Changes in 53850b3: wiki: revised onboarding page for using a ssh key in the solution and added a guide for autossh

				wiki/howto/autossh.md
			
          @@ -0,0 +1,35 @@

          +# Using Autossh in a tunnel environment

          +

          +Autossh is a tool which enables users to monitor their current ssh connection and is able to restart connections in specific cases.

          +

          +## Installation

          +To install autossh in CentOS 7 (current EC2-environment in AWS), you need to compile it from source.  

          +The following commands can help with the installation:

          +

          ++ `sudo yum install wget gcc make`

          ++ `wget http://www.harding.motd.ca/autossh/autossh-1.4g.tgz`

          ++ `tar -xf autossh-1.4g.tgz`

          ++ `cd autossh-1.4g`

          ++ `./configure`

          ++ `make`

          ++ `sudo make install`

          ++ `sudo ln -s /usr/local/bin/autossh /usr/local/sbin/autossh`

          +

          +The last command is useful when you want to access autossh with the root user.

          +

          +The only problem with this approach is that the source compilation in this case doesn't provide an uninstall operation.  

          +It can therefore be useful to use the tool `checkinstall` instead of `sudo make install`.

          +

          +## Configuration

          +It is benefitial to use tmux for the usage of autossh to create a terminal session, in which autossh can run without blocking the whole terminal session. Use `yum install tmux` for the installation.

          +

          +Autossh itself relies on ssh and passes its terminal arguments to ssh. There are a few exeptions, for example the -M argument, which specifies the monitoring and echo port needed for the operation of autossh (uses the specified port and the port + 1). Autossh can be configured via environment variables, refer to the autossh manual for further information (`man autossh`).  

          +It can be useful to tweak the ssh_config and sshd_config to assure a quick recovery from failovers (see [Olympic Setup](/wiki/info/landscape/olympic-setup.md#tunnels) for the configuration). A typical command for creating a ssh tunnel is the following:

          +

          +```

          +autossh -M 20000 -N -L *:5672:localhost:5672 -i /root/.ssh/id_rsa <ip-address>

          +```

          +

          ++ -N specifies to not execute remote commands

          ++ -L specifies the connection to be forwarded

          ++ -i specifies the identity file

          \ No newline at end of file

				wiki/howto/onboarding.md
			
          @@ -23,7 +23,8 @@ First of all, make sure you've looked at [http://www.amazon.de/Patterns-Elements

           1. Git Account

              The primary Git repository for the project is hosted on sapsailing.com. It is mirrored on an hourly basis into SAP's internal Git/Gerrit repository, but branches from the external Git end up under the remote `sapsailing.com` in the internal repository, thus do not automatically merge into their branch counterparts. Conversely, commits pushed onto branches of the SAP-internal Gerrit will not by themselves end up on the external Git at sapsailing.com.

          -   - For access to the external git at `ssh://trac@sapsailing.com/home/trac/git` please send your SSH public key to Axel Uhl or Simon Marcel Pamies, requesting git access. Make sure to NOT generate the key using Putty. Putty keys don't work reliably under Linux and on Windows/Cygwin environments. Use ssh-keygen in a Cygwin or Linux or MacOS/X environment instead. For further instructions for generating an ssh-key see [GitHub](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent)

          +   - For access to the external git at `ssh://trac@sapsailing.com/home/trac/git` please send your SSH public key to Axel Uhl or Simon Marcel Pamies, requesting git access. Make sure to NOT generate the key using Putty. Putty keys don't work reliably under Linux and on Windows/Cygwin environments. Use ssh-keygen in a Cygwin or Linux or MacOS/X environment instead. For further instructions for generating an ssh-key see [GitHub](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent).  

          +   Note: If you want to use the ssh-key in the context of our solution, it has to be in the PEM format, therefore add the parameter `-m PEM` to the ssh-keygen command when you are creating a new one. Example: `ssh-keygen -t rsa -b 4096 -C "test@test.com" -m PEM`. When using an existing key with the OpenSSH format, you can convert your private key with the command `ssh-keygen -p -m PEM -f <path-to-private-key>`, the public key can stay as it was. Make sure to set a password for your key.

              - Alternatively, for access to the SAP-internal Git/Gerrit repository register yourself as a Git user in the SAP-Git under: [https://git.wdf.sap.corp:8080/](https://git.wdf.sap.corp:8080/); ask the Git administrator (Axel Uhl) to get on the list of enabled committers

           2. Bugzilla

...	...	@@ -23,7 +23,8 @@ First of all, make sure you've looked at [http://www.amazon.de/Patterns-Elements
23	23	1. Git Account
24	24	The primary Git repository for the project is hosted on sapsailing.com. It is mirrored on an hourly basis into SAP's internal Git/Gerrit repository, but branches from the external Git end up under the remote `sapsailing.com` in the internal repository, thus do not automatically merge into their branch counterparts. Conversely, commits pushed onto branches of the SAP-internal Gerrit will not by themselves end up on the external Git at sapsailing.com.
25	25
26		- - For access to the external git at `ssh://trac@sapsailing.com/home/trac/git` please send your SSH public key to Axel Uhl or Simon Marcel Pamies, requesting git access. Make sure to NOT generate the key using Putty. Putty keys don't work reliably under Linux and on Windows/Cygwin environments. Use ssh-keygen in a Cygwin or Linux or MacOS/X environment instead. For further instructions for generating an ssh-key see [GitHub](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent)
	26	+ - For access to the external git at `ssh://trac@sapsailing.com/home/trac/git` please send your SSH public key to Axel Uhl or Simon Marcel Pamies, requesting git access. Make sure to NOT generate the key using Putty. Putty keys don't work reliably under Linux and on Windows/Cygwin environments. Use ssh-keygen in a Cygwin or Linux or MacOS/X environment instead. For further instructions for generating an ssh-key see [GitHub](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent).
	27	+ Note: If you want to use the ssh-key in the context of our solution, it has to be in the PEM format, therefore add the parameter `-m PEM` to the ssh-keygen command when you are creating a new one. Example: `ssh-keygen -t rsa -b 4096 -C "test@test.com" -m PEM`. When using an existing key with the OpenSSH format, you can convert your private key with the command `ssh-keygen -p -m PEM -f <path-to-private-key>`, the public key can stay as it was. Make sure to set a password for your key.
27	28	- Alternatively, for access to the SAP-internal Git/Gerrit repository register yourself as a Git user in the SAP-Git under: [https://git.wdf.sap.corp:8080/](https://git.wdf.sap.corp:8080/); ask the Git administrator (Axel Uhl) to get on the list of enabled committers
28	29
29	30	2. Bugzilla

...	...	@@ -0,0 +1,35 @@
	1	+# Using Autossh in a tunnel environment
	2	+
	3	+Autossh is a tool which enables users to monitor their current ssh connection and is able to restart connections in specific cases.
	4	+
	5	+## Installation
	6	+To install autossh in CentOS 7 (current EC2-environment in AWS), you need to compile it from source.
	7	+The following commands can help with the installation:
	8	+
	9	++ `sudo yum install wget gcc make`
	10	++ `wget http://www.harding.motd.ca/autossh/autossh-1.4g.tgz`
	11	++ `tar -xf autossh-1.4g.tgz`
	12	++ `cd autossh-1.4g`
	13	++ `./configure`
	14	++ `make`
	15	++ `sudo make install`
	16	++ `sudo ln -s /usr/local/bin/autossh /usr/local/sbin/autossh`
	17	+
	18	+The last command is useful when you want to access autossh with the root user.
	19	+
	20	+The only problem with this approach is that the source compilation in this case doesn't provide an uninstall operation.
	21	+It can therefore be useful to use the tool `checkinstall` instead of `sudo make install`.
	22	+
	23	+## Configuration
	24	+It is benefitial to use tmux for the usage of autossh to create a terminal session, in which autossh can run without blocking the whole terminal session. Use `yum install tmux` for the installation.
	25	+
	26	+Autossh itself relies on ssh and passes its terminal arguments to ssh. There are a few exeptions, for example the -M argument, which specifies the monitoring and echo port needed for the operation of autossh (uses the specified port and the port + 1). Autossh can be configured via environment variables, refer to the autossh manual for further information (`man autossh`).
	27	+It can be useful to tweak the ssh_config and sshd_config to assure a quick recovery from failovers (see [Olympic Setup](/wiki/info/landscape/olympic-setup.md#tunnels) for the configuration). A typical command for creating a ssh tunnel is the following:
	28	+
	29	+```
	30	+autossh -M 20000 -N -L *:5672:localhost:5672 -i /root/.ssh/id_rsa <ip-address>
	31	+```
	32	+
	33	++ -N specifies to not execute remote commands
	34	++ -L specifies the connection to be forwarded
	35	++ -i specifies the identity file
...	...	\ No newline at end of file