Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Direct login without password
Operating Systems Solaris Direct login without password Post 302504228 by tuxian on Monday 14th of March 2011 05:07:47 AM
Old 03-14-2011
Direct login without password
Hi,

I am trying to setup direct login from server test1 (Solaris 10) to server test2 (Solaris 9) using id taops (ldap id).

Process Followed on Test 2.
created .rhosts file in home directory of user taops
geneted public key on test1 and appended to authorized keys on test2.

Now trying to login but still asking for password.

Where am I missing.
 

8 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

login password....

i forgot my login password,in solaris 9 how to get it. (1 Reply)
Discussion started by: venkatramana
1 Replies

2. UNIX for Dummies Questions & Answers

login without password

is it possible to login into root user or any user in fact and the system wouldnt prompt u for a password ..ala windows style of login (6 Replies)
Discussion started by: tarunicon
6 Replies

3. Solaris

SSH Password-less login fails on password expiry.

Hi Gurus I have a few Sol 5.9 servers and i have enabled password less authentication between them for my user ID. Often i have found that when my password has expired,the login fails. Resetting my password reenables the keys. Do i need to do something to avoid this scenario or is this... (2 Replies)
Discussion started by: Renjesh
2 Replies

4. Linux

ssh - disable direct root login

Hi Guys.... I am a newbie to unix. I have a requirement. I have a server. I have to configure ssh to disable direct root login and then add a user with sudo access to this server.Then change the ssh port to 22315 and the server should permit the ssh only from my local machine ip.I also have to... (1 Reply)
Discussion started by: mahesh_raghu
1 Replies

5. AIX

AIX Disable direct root login problems

I have disabled rlogin for root successfully , but after that i could not login to root from console and could not su to root from other users as it responded as expired account I did not have any admin user but I have managed to recover the situation by accessing rootvg before mounting it, but... (5 Replies)
Discussion started by: majd_ece
5 Replies

6. Solaris

Disable users to direct login

Hi all, how can I disable direct login to a Solaris system not only for root user but also for other accounts? Looking in google I came to the following: For telnet (/etc/default/login): disable root access> CONSOLE=/dev/console disable generic user> ? For ssh... (5 Replies)
Discussion started by: Evan
5 Replies

7. Shell Programming and Scripting

Manipulating sed Direct Input to Direct Output

Hi guys, been scratching round the forums and my mountain of resources. Maybe I havn't read deep enough My question is not how sed edits a stream and outputs it to a file, rather something like this below: I have a .txt with some text in it :rolleyes: abc:123:xyz 123:abc:987... (7 Replies)
Discussion started by: the0nion
7 Replies

8. Cybersecurity

Ssh password less login with different ID

Hi, I have setup password less ssh connection between Server A and Server B and I am able to connect with User2. But my requirement is, User 1 run a script in Server A to ssh into Server B as User 2 but it is asking password every time I execute. Server A: Login as User 1 and execute sh... (8 Replies)
Discussion started by: sakthi.99it
8 Replies

LEARN ABOUT OPENSOLARIS

chkey

chkey(1)							   User Commands							  chkey(1)

NAME

       chkey - change user's secure RPC key pair

SYNOPSIS

       chkey [-p] [-s nisplus | nis | files | ldap]
	    [-m <mechanism>]

DESCRIPTION

       chkey is used to change a user's secure RPC public key and secret key pair. chkey prompts for the old secure-rpc password and verifies that
       it is correct by decrypting the secret key. If the user has not already used keylogin(1) to decrypt and store  the  secret  key	with  key-
       serv(1M),  chkey  registers the secret key with the local keyserv(1M) daemon. If the secure-rpc password does not match the login password,
       chkey prompts for the login password. chkey uses the login password to encrypt the user's secret  Diffie-Hellman  (192  bit)  cryptographic
       key. chkey can also encrypt other Diffie-Hellman keys for authentication mechanisms configured using nisauthconf(1M).

       chkey ensures that the login password and the secure-rpc  password(s) are kept the same, thus enabling password shadowing. See shadow(4).

       The  key pair can be stored in the  /etc/publickey file (see publickey(4)), the NIS publickey map, or the NIS+ cred.org_dir table. If a new
       secret key is generated, it will be registered with the local keyserv(1M) daemon. However, only NIS+ can store  Diffie-Hellman  keys  other
       than 192-bits.

       Keys  for specific mechanisms can be changed or reencrypted using the -m option followed by the authentication mechanism name. Multiple	-m
       options can be used to change one or more keys. However, only mechanisms configured using nisauthconf(1M) can be changed with  chkey.

       If the source of the  publickey is not specified with the -s option,  chkey consults the  publickey entry in the name service  switch  con-
       figuration  file.   See	nsswitch.conf(4). If the  publickey entry specifies one and only one source, then chkey will change the key in the
       specified name service. However, if multiple name services are listed, chkey can not decide which source to  update  and  will  display	an
       error message. The user should specify the source explicitly with the -s option.

       Non root users are not allowed to change their key pair in the files database.

OPTIONS

       The following options are supported:

       -p		 Re-encrypt the existing secret key with the user's login password.

       -s nisplus	 Update the  NIS+ database.

       -s nis		 Update the NIS database.

       -s files 	 Update the  files database.

       -s ldap		 Update the  LDAP database.

       -m <mechanism>	 Changes or re-encrypt the secret key for the specified mechanism.

FILES

       /etc/nsswitch.conf

       /etc/publickey

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       keylogin(1),   keylogout(1),   keyserv(1M),   newkey(1M),   nisaddcred(1M),  nisauthconf(1M),  nsswitch.conf(4),  publickey(4),	shadow(4),
       attributes(5)

NOTES

       NIS+ might not be supported in future releases of the Solaris operating system. Tools to aid the migration from NIS+ to LDAP are  available
       in the current Solaris release. For more information, visit http://www.sun.com/directory/nisplus/transition.html.

SunOS 5.11							    29 Nov 2005 							  chkey(1)
All times are GMT -4. The time now is 11:58 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy