Operating System - HP-UX
1748080 Members
5327 Online
108758 Solutions
New Discussion юеВ

Re: ssh & sftp is not working for the particular account with out pw

 
R.SRIDHAR
Occasional Advisor

ssh & sftp is not working for the particular account with out pw

Hi
I have configured the ssh authorization properly. the criteria is i am making ssh from hp-ux box to AIX box that to form different account. When i try as mentioned below is prompting for passwd.

account1#ssh account2@server1
account2@server1 password:

and i find the below bug

=============================
debug2: key: /home/wedbprod/.ssh/hrwedb (00000000)
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug3: start over, passed a different list publickey,password,keyboard-interactive
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Offering public key: /home/wedbprod/.ssh/agilent
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Offering public key: /home/wedbprod/.ssh/wedbsftp
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Trying private key: /home/wedbprod/.ssh/hrwedb
debug1: read PEM private key done: type RSA
debug3: sign_and_send_pubkey
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug2: we did not send a packet, disable method
debug3: authmethod_lookup keyboard-interactive
debug3: remaining preferred: password
debug3: authmethod_is_enabled keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug2: userauth_kbdint
debug2: we sent a keyboard-interactive packet, wait for reply
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug3: userauth_kbdint: disable: no info_req_seen
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred:
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
==============================
Kindly check and advise me..
7 REPLIES 7
Matti_Kurkela
Honored Contributor

Re: ssh & sftp is not working for the particular account with out pw

What does the server1's log say?

MK
MK
R.SRIDHAR
Occasional Advisor

Re: ssh & sftp is not working for the particular account with out pw

That is a AIX box no error sticked..
But the same thing i have checked fro other account it working...
Steven Schweda
Honored Contributor

Re: ssh & sftp is not working for the particular account with out pw

> debug1: Offering public key: /home/wedbprod/.ssh/agilent

> debug1: Offering public key: /home/wedbprod/.ssh/wedbsftp

> debug1: Trying private key: /home/wedbprod/.ssh/hrwedb

It seems to be sending every key it can find,
with no success.

> [...] fro other account it working...

And what does "ssh -v [...]" tell you there?
(I assume that that's how you got the "debug"
output shown above.)

If this stuff works from one account but not
another, then I'd guess that there are
differences in the "~/.ssh" directories for
the two accounts.

As usual, it might help to see the actual
commands used, and their actual output.
Hiding details ("account1", "server1", [...])
is not helpful.
Turgay Cavdar
Honored Contributor

Re: ssh & sftp is not working for the particular account with out pw

If your ssh setup is coorrect please check for world or group writable home directories...
Steven E. Protter
Exalted Contributor

Re: ssh & sftp is not working for the particular account with out pw

Shalom,

Did you read this?

http://www.hpux.ws/?p=10

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
akarayil
Frequent Advisor

Re: ssh & sftp is not working for the particular account with out pw

1. On ssh client, create a public/private key pair for the user account:
client$ ssh-keygen ├в t rsa
Keep a blank passphrase.
Public (id_rsa.pub) and private (id_rsa) keys are generated in a directory called '.ssh'in user's home directory.
client$ ll ~/.ssh/id_rsa.pub

2. Copy the client├в s id_rsa.pub public key file to the SSH server.

3. Create a ~/.ssh/authorized_keys file on the server to store clients├в public keys:
server$ touch ~/.ssh/authorized_keys
server$ chown user ~/.ssh/authorized_keys
server$ chmod 644 ~/.ssh/authorized_keys

4. Append authorized client├в s public key to the user├в s authorized_keys on the server:
server$cat id_rsa.pub >>~/.ssh/authorized_keys

5. Test the client/user authentication
client$ ssh -v user1@myserver

HTH
OldSchool
Honored Contributor

Re: ssh & sftp is not working for the particular account with out pw

another thing you can try is to start the sshd on the AIX box in debug, using a different port than normal, as in:

/usr/sbin/sshd -ddd -p

then on the hp side, attempt the login again. you will have to specify the same port as used above, as in:

ssh -p user2@server1

this should allow you to get debugging on the server side without interfering with everyone else's logins