HPE Community
Operating System - HP-UX
1834150 Members
3584 Online
110064 Solutions
New Discussion

HP-UX Secure Shell on 11.11

 
SOLVED
Go to solution
tony escujuri_2
Occasional Contributor

‎09-05-2003 12:30 AM

‎09-05-2003 12:30 AM

HP-UX Secure Shell on 11.11

Hello out there.

I'm having a tought time figuring this one out. I have about 30 11.0 systems running HPUX.. openssh and all allow for hostbased (authorized_keys) access .. no password required.

But the 2 11.11 systems I have will not allow this function. By default on the 11.0 machine s which are running HPUX Secure Shell version of T1471AA_A.03.10.002_HP-UX_B.11.00_32+64

TIA and Regards,
Tony Escujuri
tony@unixadm.net




HP-UX Secure Shell
Product #: T1471AA
Version: A.03.50.000


0 Kudos
Reply
7 REPLIES 7
tony escujuri_2
Occasional Contributor

‎09-05-2003 12:34 AM

‎09-05-2003 12:34 AM

Re: HP-UX Secure Shell on 11.11

Here is the currently sshd_config we are running.

Any assitance on this would be moe than appreciated.

Regards,
Tony
0 Kudos
Reply
tony escujuri_2
Occasional Contributor

‎09-05-2003 12:43 AM

‎09-05-2003 12:43 AM

Re: HP-UX Secure Shell on 11.11

 
0 Kudos
Reply
Andrew Cowan
Honored Contributor

‎09-06-2003 04:30 AM

‎09-06-2003 04:30 AM

Solution

Re: HP-UX Secure Shell on 11.11

Hi Tony,

At a stab I would say you have created a DSA type key and stored it as though it was RSA (or visa-versa). The other problem could be caused if you used a text editor that has added control-characters and it is confusing SSH.

The best bet is to delete all your host keys on the effected hosts, and then start again.

Good luck,
Andrew
Reply
Sridhar Bhaskarla
Honored Contributor

‎09-06-2003 06:31 AM

‎09-06-2003 06:31 AM

Re: HP-UX Secure Shell on 11.11

Hi Tony,

debug2: we sent a publickey packet, wait for reply
debug1: authentications that can continue: external-keyx,gssapi,publickey,password,keyboard-interactive,hostbased
debug1: try privkey: /root/.ssh/id_dsa
debug3: no such identity: /root/.ssh/id_dsa


Looks like you still have to setup your public/private key pairs. It complains about no such identity. You will need to add the id_dsa.pub to the authorized_keys on the destination server (yahoo.com).

I may friendly remind you not to disclose any of your company related information for security reasons. You could replace them with dummy names.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
0 Kudos
Reply
Carlos Maldonado
New Member

‎09-06-2003 10:08 AM

‎09-06-2003 10:08 AM

Re: HP-UX Secure Shell on 11.11

I don't know for sure, since I'm not at the office right now but you should try de-commenting this line

#PubkeyAuthentication yes

and if it doesn't work adding this

RSAAuthentication yes

I hope it helps (points will be appreciated if it does ;-) )

regards
Truth Addict
Reply
Steven E. Protter
Exalted Contributor

‎09-06-2003 10:38 PM

‎09-06-2003 10:38 PM

Re: HP-UX Secure Shell on 11.11

I am attaching a word doc that tells you exactly how to set up and exchange those public keys.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
tony escujuri_2
Occasional Contributor

‎09-08-2003 01:33 AM

‎09-08-2003 01:33 AM

Re: HP-UX Secure Shell on 11.11

All it was the perms on the /root directory. changed to 700 and everything is doing perfect now. Thanks for the assistance.

Regards,
Tony
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.