Using check_by_ssh with key authentication instead of NRPE
While all of the previous recipes in this chapter show that NRPE can be very effectively tied down and secured, it may be that we require some means of authentication to a target host in order to run the appropriate Nagios plugins on it. The nrpe
daemon does not require any authentication to return information about the host's state; as long as the IP addresses all match, and the command is defined for running, it will return information.
If you already use SSH keys for a public key infrastructure in your network, then you may find it preferable to use the
check_by_ssh
plugin instead, which allows you to use public keys to authenticate with a target host before running any commands. This ...
Get Nagios Core Administration Cookbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.