I'm trying to tunnel this application that is running as the SYSTEM user, and the tunneling fails. What could be wrong?
asked Dec 21 '10 at 12:57
SSH KB ♦
The Tectia broker has not been designed to be executed as a SYSTEM user. Tectia Broker is the middleware that handles all SSH connections of a given user, not the connections of a given host.
For having broker running as a SYSTEM user, all the correct paths and privileges for this system user would need to be in place.
Furthermore, all TCP/FTP communications generated by SYSTEM processes are automatically bypassed, therefore, even if Broker is started as a system user, the transparent tunnels will not work.
This is done on purpose for reducing the impact of capture within the host. All TCP/IP communications go through our capture component, and, because Broker is not supposed to be executed as a SYSTEM, SYSTEM has a pass-through for performance reasons. (i.e.: It does not need to check that broker is running, etc...)
This will allow for the capture to work.
If you can't change the user your application is running as, please submit a trouble ticket with us with a description of your setup.
answered Dec 21 '10 at 13:00
SSH KB ♦