SSH Tunneling to Devices
Customer uses a Linux box to wire all the sensors which runs an OPC UA server. A user with SU privileges will SSH into the box and fix any issues related to malfunctioning OPC server, configuration change, etc. In terms of the number of sessions, the SSH session is only used occasionally on a per device basis. This falls under broader device management category for non-constrained devices like PLC and RTU used in a lot of industrial automation scenarios. If IoT Hub wants to be the focal point for industrial automation devices, it is prudent to offer that capability. If not, partners and customers may end up building their own or go to 3rd party services.
We are considering this requirement.
Wim Van Geem commented
Hi, just check out the preview of Azure IoT Hub Device Streams in this recent post: https://azure.microsoft.com/en-us/blog/introducing-iot-hub-device-streams-in-public-preview
It would be possible to tunnel SSH or any TCP session over MQTT or the other protocols IoT Hub supports, though it might not be very much fun to use interactively.
Maybe another solution would be to implement a device command that enables an SSH server and un-firewalls a port for a limited time and returns the device IP address?
This feature is critical for large manufactures.
Gerald Wiltse commented
This would be nice, machine.io is an amazing iot solution which does this. Shows a good precedent.
Elio Damaggio commented
We are aware of this requirement, and considering this feature.