# Connect to SSH Servers There are three different ways to connect to SSH servers with StrongDM: * Use the CLI * Connect with `ssh` as an alias for `sdm` * Connect directly with `ssh` using the mapped port {% hint style="info" %} To connect to SSH servers using Windows and the CLI, you must follow the instructions for [mapped ports](#use-the-mapped-port). {% endhint %} ### Use the StrongDM Binary #### Directly You can connect to any accessible server simply by using `sdm ssh `. This command also attempts to complete `` as long as you use a unique substring of a valid server. ```bash $ sdm status DATASOURCE NAME STATUS PORT TYPE Customer DB RO not connected 5432 postgres Document DB not connected 27017 mongo SSH SERVER STATUS PORT TYPE bastion01 not connected 60672 ssh deployment04 not connected 60834 ssh $ sdm ssh bas Welcome to Ubuntu 16.04.2 LTS (GNU/Linux 4.4.0-1026-aws x86_64) Last login: Thu Jun 14 16:12:48 2018 from 127.0.0.1 ubuntu@bastion01:~$ ``` {% hint style="info" %} Note that it is not necessary to run either the `sdm connect` or `sdm disconnect` commands for this resource *except* in [specific instances](/users/connect.md#connection). {% endhint %} #### Make an alias The easiest way to use SSH with StrongDM is to add the StrongDM aliases to your shell profile. * Type `sdm ssh alias` to get the required aliases; they map `ssh` and `scp` to use the StrongDM binary. ```bash sdm ssh alias # Run this in the command line, or add the following to $HOME/.bashrc alias ssh="/usr/local/bin/sdm ssh wrapped-run" alias scp="scp -S'/usr/local/bin/sdm' -osdmSCP" ``` * Run the resulting lines on the prompt and/or add them to `$HOME/.bashrc` or the equivalent for your shell. * Start a new shell and test by connecting to an SSH server: `ssh `. This does not interrupt anything you have defined via straight SSH. It first checks StrongDM, and if nothing exists, defaults to your standard path. ### Use the Mapped Port Just like connecting to databases, you can connect directly to the mapped server ports using `ssh`. 1. Open a connection to the server by clicking on its name in the desktop app, or via the `sdm connect ` command. For example: `sdm connect server01` 2. Note the port assigned to the server in the desktop app or listed under `sdm status`. 3. Connect via the `ssh localhost -p ` command. For example: `ssh localhost -p 14213` #### Windows 10/11 Windows 10 and 11 come with OpenSSH installed by default, but the executable is not where `sdm` looks for it by default. In order to use `sdm ssh` commands, you must copy `ssh.exe` from `C:\Windows\System32\OpenSSH\ssh.exe` to `C:\Users\\AppData\Local\Microsoft\WindowsApps\ssh.exe`. ### Troubleshooting Some versions of particular Linux distributions include changed requirements for a higher key size than OpenSSH requires and the StrongDM driver provides. In this case, you can still connect to StrongDM SSH resources by adding the `RSAMinSize` or `RequiredRSASize` parameter (whichever is used in your distro). {% hint style="info" %} ```bash sdm ssh -o RSAMinSize=1024 ``` {% endhint %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.strongdm.com/users/connect/connect-ssh.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.