Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: SSH with RSA keys - error contacting the authentication agent
Top Forums UNIX for Dummies Questions & Answers SSH with RSA keys - error contacting the authentication agent Post 302275513 by jim mcnamara on Saturday 10th of January 2009 10:26:05 PM
Old 01-10-2009
Some Possibilities:

somebody ran ssh-keygen and made new keys in the local directory

there was a change - almost any sort of change -
on the other side
changed protections on the remote directories
ip address change on the remote server
on this side
changed directory protections

If you ask around people will say 'nothing was changed' but something had to have changed.
 

10 More Discussions You Might Find Interesting

1. IP Networking

Windows98 RSA/Ace agent

I run windows98 but need to use the ACE agent to VPN in to the work network anyone know where i can download it ? RSA don't have it on they're site any ideas ????? loosing out on "call out" dosh (2 Replies)
Discussion started by: kie
2 Replies

2. UNIX for Advanced & Expert Users

ssh RSA authentication failure

I am using an ssh pub key on two remote servers to allow ssh session without authentication. Both servers have the same id_rsa.pub copied from the host into the remote servers ~user/.ssh/authorized_keys. There is no passphrase for this key either. The problem is that I am able to ssh into one... (2 Replies)
Discussion started by: prkfriryce
2 Replies

3. Shell Programming and Scripting

RSA keys are not working

Hi, We have two open SSh systems(Let us assume that A and B).These systems are having the non expiring passwords. We established a passwordless connection between two systems bu using the rsa key iles. I have created the key generated files by using the command ssh-keygen -t rsa in system A and... (1 Reply)
Discussion started by: srrao.ch
1 Replies

4. UNIX for Advanced & Expert Users

RSA keys are not working

Hi, We have two open SSh systems(Let us assume that A and B).These systems are having the non expiring passwords. We established a passwordless connection between two systems bu using the rsa key iles. I have created the key generated files by using the command ssh-keygen -t rsa in system A and... (1 Reply)
Discussion started by: srrao.ch
1 Replies

5. Linux

RSA Keys root account problem?

I have set up RSA private and pub keys between "NodeA" and "NodeB" Everything works fine when I test with a regular user account. However it does not work as root. I followed the same procedure to set up the keys as the root user but I am still prompted for a password. I have verified my... (1 Reply)
Discussion started by: geek4lif
1 Replies

6. Shell Programming and Scripting

Encrypt/Decrypt string with rsa keys

Hello, I wanted to know if there was a way to encrypt a string, not a file using openssl and then decrypt it? I cant seem to get it to work. This is what I have been trying but I'm not having much luck. encTxt=`echo "$1" | openssl dgst -sha1 -binary | openssl rsautl -sign -inkey... (1 Reply)
Discussion started by: tjones1105
1 Replies

7. UNIX and Linux Applications

Running RMAN backups from grid control but using oracle account with rsa keys vs a password ?

I'm a sysadmin trying to help out one of our DBA's setup the RMAN backups (Oracle 11g on rhel5 ) so they can schedule and control them from the OEM grid control. But we want the oracle user to use ssh keys instead of a password. I have the working rsa keys in place for the user but the GUI seems to... (0 Replies)
Discussion started by: samael00
0 Replies

8. Shell Programming and Scripting

Password-less RSA Authentication not working

Hello Friends, I know this issue has been raised many times and hence I tried every resolution provided in the forum before I posted this issue again. My Password-less RSA authentication was working fine for quite some time. Whenever the remote server password used to change I used to re-do... (5 Replies)
Discussion started by: mehimadri
5 Replies

9. UNIX for Dummies Questions & Answers

SSH Keys Authentication keeps asking for password

Hi! Im trying to set access from ServerA(SunOS) to ServerB(Some custom Linux with Keyboard Interactive login) with SSH Keys. As a proof of concept I was able to do it between 2 virtual machines. Now in my real life scenario it isnt working. I created the keys in ServerA, copied them to... (7 Replies)
Discussion started by: RedSpyder
7 Replies

10. UNIX for Dummies Questions & Answers

[SSH-RSA] Still prompting for password after generating keys

Hello, I'm trying to perform these operations without entering any password, as user "fzd":fzd@machine1> scp /tmp/srcFile1 fzd@machine2:/tmp/$destFile fzd@machine1> scp fzd@machine2:/tmp/$srcFile /tmp/$destFilebut alsofzd@machine1> scp /tmp/srcFile1 machine2:/tmp/$destFile fzd@machine1> scp... (6 Replies)
Discussion started by: fzd
6 Replies

LEARN ABOUT OPENSOLARIS

nisupdkeys

nisupdkeys(1M)						  System Administration Commands					    nisupdkeys(1M)

NAME

       nisupdkeys - update the public keys in a NIS+ directory object

SYNOPSIS

       /usr/lib/nis/nisupdkeys [-a | -C] [-H host] [directory]

       /usr/lib/nis/nisupdkeys -s [-a | -C] -H host

DESCRIPTION

       This  command updates the public keys in an NIS+ directory object. When the public key(s) for a NIS+ server are changed, nisupdkeys reads a
       directory object and attempts to get the public key data for each server of that directory. These keys are placed in the  directory  object
       and  the object is then modified to reflect the new keys. If directory is present, the directory object for that directory is updated. Oth-
       erwise the directory object for the default domain is updated. The new key must be propagated to all directory objects that reference  that
       server.

       On  the	other hand, nisupdkeys -s gets a list of all the directories served by host and updates those directory objects. This assumes that
       the caller has adequate permission to change all the associated directory objects. The list of directories being served by a  given  server
       can  also  be  obtained	by nisstat(1M). Before you do this operation, make sure that the new address/public key has been propagated to all
       replicas. If multiple authentication mechanisms are configured using nisauthconf(1M), then the keys  for  those	mechanisms  will  also	be
       updated or cleared.

       The  user  executing  this  command must have modify access to the directory object for it to succeed. The existing directory object can be
       displayed with the niscat(1) command using the -o option.

       This command does not update the directory objects stored in the NIS_COLD_START file on the NIS+ clients.

       If a server is also the root master server, then nisupdkeys -s cannot be used to update the root directory.

OPTIONS

       -a	  Update the universal addresses of the NIS+ servers in the directory object. Currently, this only works for the TCP/IP family	of
		  transports.  This option should be used when the IP address of the server is changed. The server's new address is resolved using
		  getipnodebyname(3SOCKET) on this machine. The /etc/nsswitch.conf file must point to the correct source for ipnodes and hosts for
		  this resolution to work.

       -C	  Specify  to  clear rather than set the public key(s). Communication with a server that has no public key(s) does not require the
		  use of secure RPC.

       -H host	  Limit key changes only to the server named host. If the hostname is not a fully qualified NIS+ name, then it is assumed to be  a
		  host in the default domain. If the named host does not serve the directory, no action is taken.

       -s	  Update all the NIS+ directory objects served by the specified server. This assumes that the caller has adequate access rights to
		  change all the associated directory objects. If the NIS+ principal making this call does not have adequate permissions to update
		  the directory objects, those particular updates will fail and the caller will be notified. If the rpc.nisd on host cannot return
		  the list of servers it serves, the command will print an error message. The caller would then have to invoke nisupdkeys multiple
		  times (as in the first synopsis), once per NIS+ directory that it serves.

EXAMPLES

       Example 1 Using nisupdkeys

       The following example updates the keys for servers of the foo.bar. domain.

	 example% nisupdkeys foo.bar.

       This example updates the key(s) for host fred that serves the foo.bar. domain.

	 example% nisupdkeys -H fred foo.bar.

       This example clears the public key(s) for host wilma in the foo.bar. directory.

	 example% nisupdkeys -CH wilma foo.bar.

       This example updates the public key(s) in all directory objects that are served by the host wilma.

	 example% nisupdkeys -s -H wilma

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWnisu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       chkey(1), niscat(1), nisaddcred(1M), nisauthconf(1M), nisstat(1M), getipnodebyname(3SOCKET), nis_objects(3NSL), attributes(5)

NOTES

       NIS+  might not be supported in future releases of the Solaris Operating system. Tools to aid the migration from NIS+ to LDAP are available
       in the current Solaris release. For more information, visit http://www.sun.com/directory/nisplus/transition.html.

SunOS 5.11							    13 Dec 2001 						    nisupdkeys(1M)
All times are GMT -4. The time now is 08:10 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy