12-23-2011
SSH password login issue
Hi All,
I am facing issue in setting up passwordless login through ssh on two Solaris-10 boxes. user-id ravrwa from server tsapiq04-zrwdq01 should be able to login to server tsbrit03 as cpsuserq, which is not happening. I am not sure where is the problem, while keys are already all set. Here is the example -
HTML Code:
(root):/raven/apps/raven_users/ravrwa> id
uid=23286(ravrwa) gid=2201(raven)
(root):/raven/apps/raven_users/ravrwa> pwd
/raven/apps/raven_users/ravrwa
(root):/raven/apps/raven_users/ravrwa> ls -l .ssh
total 17
-rw------- 1 ravrwa raven 883 Dec 10 18:34 id_rsa
-rw------- 1 ravrwa raven 887 Jun 16 2011 id_rsa.old
-rw-r--r-- 1 ravrwa raven 233 Dec 10 18:34 id_rsa.pub
-rw-r--r-- 1 ravrwa raven 233 Dec 10 18:34 id_rsa.pub.11222011
-rw-r--r-- 1 ravrwa raven 233 Jun 16 2011 id_rsa.pub.old
-rw-r--r-- 1 ravrwa raven 1648 Dec 10 18:37 known_hosts
(root):/raven/apps/raven_users/ravrwa> cat .ssh/id_rsa.pub
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAvn/x8G/2+4Jc5r5fMwirptHhzpZAeWevv63rLFn8CqSdm6rWeRfik/eQGj7+1xw0dWEHCZj5/uPxoBzcWe8Xe5Qnx4SZVahwYeszg05p+vo3315UV7dzAv22mif7hKKfTrY3E/SMA1lCBtZYnet3468WCLdc0W/5JkjfKLxOFtM= ravrwa@tsapiq04-zrwdq01
(root):/raven/apps/raven_users/ravrwa> ssh cpsuserq@tsbrit03
Password:
If I check pub keys on destination server (tsbrit03), those are already there exactly -
HTML Code:
$ id
uid=56330(cpsuserq) gid=25030(cpsgrp_q)
$ pwd
/Hyperion/WERQ/raven
$ ls -l .ssh/authorized_keys
-rw------- 1 cpsuserq cpsgrp_q 233 Dec 22 16:46 .ssh/authorized_keys
$ cat .ssh/authorized_keys
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAvn/x8G/2+4Jc5r5fMwirptHhzpZAeWevv63rLFn8CqSdm6rWeRfik/eQGj7+1xw0dWEHCZj5/uPxoBzcWe8Xe5Qnx4SZVahwYeszg05p+vo3315UV7dzAv22mif7hKKfTrY3E/SMA1lCBtZYnet3468WCLdc0W/5JkjfKLxOFtM= ravrwa@tsapiq04-zrwdq01
$
Can anybody help, where could be the issue ?
Regards
10 More Discussions You Might Find Interesting
1. HP-UX
There is two server, server A and server B. In server A, I would like to login ssh to server B without typing password. (no need for ssh2)
Therefore, I do the followings:
Server A:
>cd ~
>mkdir .ssh
>ssh-keygen -t dsa -f .ssh/id_dsa
Then copy the file id_dsa.pub to Server B
Server B:... (2 Replies)
Discussion started by: alfredo
2 Replies
2. Solaris
Hi Gurus
I have a few Sol 5.9 servers and i have enabled password less authentication between them for my user ID. Often i have found that when my password has expired,the login fails.
Resetting my password reenables the keys.
Do i need to do something to avoid this scenario or is this... (2 Replies)
Discussion started by: Renjesh
2 Replies
3. Shell Programming and Scripting
ssh/sftp login by passing password , is it possible.Don't want to expect. (1 Reply)
Discussion started by: dinjo_jo
1 Replies
4. Shell Programming and Scripting
Hello,
I need to find a way to connect from server1 to 30 other servers using a single line command in order to run various command from the other 30 servers.
I am looking for a single line connection command in which i can provide the server name user name and password and connect to the... (2 Replies)
Discussion started by: LiorAmitai
2 Replies
5. Solaris
Hello friends,
I have the problem with password less login in solaris 10.
Issue : In solaris 10 I have 2 different users on is oracle and the other is archmon. when I try to ssh to the other server from oracle it is successful but when I try to ssh from archmon it fails, and it asks for the... (1 Reply)
Discussion started by: Pavankrv
1 Replies
6. Cybersecurity
Hello Gurus,
I am trying to set up bidirectional password-less login between a linux and a Solaris. The way I am doing is very simple, which is creating pub/priv key pairs on each host and add the pub key to each other's authorized_keys file:
ssh-keygen -t rsa (I tried dsa, and it didn't work... (4 Replies)
Discussion started by: error_lee
4 Replies
7. SuSE
Hello,
I can't seem to get the password less login to work on one of my SLES 11 servers. My ssh agent lets me login to all my other servers, which are Solaris 10, RHEL 5, and SLES 11 servers. Some servers mount my home directory and others don't.
The server that I'm having an issue with doesn't... (7 Replies)
Discussion started by: bitlord
7 Replies
8. Cybersecurity
Hi,
I have setup password less ssh connection between Server A and Server B and I am able to connect with User2.
But my requirement is, User 1 run a script in Server A to ssh into Server B as User 2 but it is asking password every time I execute.
Server A:
Login as User 1 and execute sh... (8 Replies)
Discussion started by: sakthi.99it
8 Replies
9. Cybersecurity
Hi,
It is continuation with my other thread, The issue i found is U1 does not set properly for password less ssh.
for setting up password less ssh i followed the following steps
1. ssh-keygen
2. ssh-copy-id -i ~/.ssh/id_rsa.pub hostname
3. /usr/bin/ssh -t -t U1@hostname sample.sh
... (3 Replies)
Discussion started by: sakthi.99it
3 Replies
10. Red Hat
I am using redhat 6.4 and i want to login ssh without password kindly guide me (2 Replies)
Discussion started by: kannansoft1985
2 Replies
LEARN ABOUT REDHAT
ssh-keysign
SSH-KEYSIGN(8) BSD System Manager's Manual SSH-KEYSIGN(8)
NAME
ssh-keysign -- ssh helper program for hostbased authentication
SYNOPSIS
ssh-keysign
DESCRIPTION
ssh-keysign is used by ssh(1) to access the local host keys and generate the digital signature required during hostbased authentication with
SSH protocol version 2.
ssh-keysign is disabled by default and can only be enabled in the the global client configuration file /etc/ssh/ssh_config by setting
HostbasedAuthentication to ``yes''.
ssh-keysign is not intended to be invoked by the user, but from ssh(1). See ssh(1) and sshd(8) for more information about hostbased authen-
tication.
FILES
/etc/ssh/ssh_config
Controls whether ssh-keysign is enabled.
/etc/ssh/ssh_host_dsa_key, /etc/ssh/ssh_host_rsa_key
These files contain the private parts of the host keys used to generate the digital signature. They should be owned by root, read-
able only by root, and not accessible to others. Since they are readable only by root, ssh-keysign must be set-uid root if hostbased
authentication is used.
SEE ALSO
ssh(1), ssh-keygen(1), ssh_config(5), sshd(8)
AUTHORS
Markus Friedl <markus@openbsd.org>
HISTORY
ssh-keysign first appeared in OpenBSD 3.2.
BSD
May 24, 2002 BSD