1. Log in to the Teamwork Server with administrator privileges.
  2. Install OpenSSH with default settings. This will install the OpenSSH server and client on your Teamwork Server machine. A warning about editing password and group file will appear while installing. Click OK.
  3. Create a local user for SSH tunnel. To do this correctly, click on My Computer, then select Manage. In the Local Users and Groups section right-click on Users and choose New User. The New User dialog opens.
    1. Enter a new username to log in into SSH service to establish tunneling. For example, tunnel.
    2. Enter the user password according to your local system policy.
    3. Clear the User must change password at next logon check box.
    4. Click Create. The local user will be created.

    This is not the same as the MagicDraw Teamwork Server user used to check out and commit UML models from/to the server. Use Teamwork Administrator to manage Teamwork users.

    The New User dialog 
  4. Create a local group for SSH tunnel users. To do this right-click on My Computer and then select Manage. In the Local Users and Groups section, right-click on Group and choose New Group. The New Group dialog opens.
    1. Enter a new groupname, for example, SSH.
    2. Add the “tunnel” user to the SSH group.
    The New Group dialog
  5. Create SSH-aware local password file with 'tunnel' user entry. Any users in this password file will be able to log on with SSH. To create the SSH-aware local password file run command prompt (click "Start"-> "Run", then type "cmd" and click Enter) and then type the following commands:
    1. cd C:\Program Files\OpenSSH\bin 
    2. mkgroup -l >> ..\etc\group
    3. mkpasswd -l -u tunnel >> ..\etc\passwd
  6. Start OpenSSH Server service from your control panel. To do this right-click on My Computer and then select Manage. In the Services and Application section, under the Services item, right-click on the OpenSSH Server service and choose Start.
  7. Test the SSH server.
    1. Type “ssh tunnel@localhost” from your command prompt.

    The following warning appears:

    The authenticity of host 'localhost (127.0.0.1)' can't be established. RSA key fingerprint is xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx. Are you sure you want to continue connecting (yes/no)?
    1. Type yes and press Enter. You must type the full word “yes," not just “y.”
    2. Enter the password you created in step 3.
    3. A warning about nonexistent home directory appears. Please ignore it.
    4. Now you are logged in into localhost via SSH service and you can see the shell prompt.
    5. After the SSH server testing, exit the server by typing exit.

Another way to test if the SSH port (port 22) is opened on the server:

In the command prompt go to the C:\Program Files\OpenSSH\bin and type the 'netstat -na' command. You will get the list of all connections. The state of the port should be "LISTENING" while the SSH server is running.