Operating System - HP-UX
1833798 Members
3063 Online
110063 Solutions
New Discussion

ssh on hpux 11i MC/SG cluster

 
Dale Waines_1
Frequent Advisor

ssh on hpux 11i MC/SG cluster

Hi All,

I am having a hard time getting into my hpux system as any other user but root. I am using openssh 3.5p1 on hpux 11i running in a MC service guard cluster. For some reason when I ssh in non/root I get the following message in my syslog.log. Any ideas what might be wrong?
Aug 18 14:45:18 ovosvr1 sshd[18173]: Accepted password for dwaines from 10.100.0.4 port 7928
Aug 18 14:45:18 ovosvr1 sshd[18177]: fatal: PAM session setup failed[33]: General Commercial Security error.

Thanks in advance
Dale
8 REPLIES 8
Robert-Jan Goossens
Honored Contributor

Re: ssh on hpux 11i MC/SG cluster

Hi Dale,

Did you install the hp version of ssh or the open ssh ? There where some bugs with password aging and pam.

The link to the hp ssh is down here.

http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=T1471AA

Hope it helps,

Robert-Jan.
Dale Waines_1
Frequent Advisor

Re: ssh on hpux 11i MC/SG cluster

Thank you for the reply. I downloaded the depot from the following location below:
http://hpux.cs.utah.edu/hppd/hpux/Networking/Admin/openssh-3.6.1p1/

supposidly is should work. Any more comments?

Thank you,
Dale
Chris Wong
Trusted Contributor

Re: ssh on hpux 11i MC/SG cluster

If you could:
1).ssh -v ovosvr1 & send the output of the failed area. 2). send your pam.conf - I'm wondering if you are using libpam_updbe module and have a different setting for root (/etc/pam_user.conf).

- Chris
Sergejs Svitnevs
Honored Contributor

Re: ssh on hpux 11i MC/SG cluster

Why you do not use hp-ux ssh from HP software depot site? It is fully-tested HP product and you can download this depot file for free.

Regards,
Sergejs
Dale Waines_1
Frequent Advisor

Re: ssh on hpux 11i MC/SG cluster

 
Chris Wong
Trusted Contributor

Re: ssh on hpux 11i MC/SG cluster

Your pam.conf looks OK. I'm wondering if you have a different pam library. Here is mine:
#: what /usr/lib/security/libpam_unix.1
/usr/lib/security/libpam_unix.1:
$Revision: @(#) libpam_unix.1 CUP11.11_BL2001_0824_1 PATCH_11.11 PHCO_2
4839 Fri Aug 24 13:27:30 PDT 2001 $

Once you were authenticated with the password that should be it, but in your syslog it is showing a new PID of 18177, so maybe it is your libpam_unix that is doing that.

- Chris

Dale Waines_1
Frequent Advisor

Re: ssh on hpux 11i MC/SG cluster

Chris,

See the results below:

# what /usr/lib/security/libpam_unix.1
/usr/lib/security/libpam_unix.1:
$Revision: @(#) libpam_unix.1 CUP11.11_BL2001_0824_1 PATCH_11.11 PHCO_24839
Fri Aug 24 13:27:30 PDT 2001 $

Thank you,
Dale
Dale Waines_1
Frequent Advisor

Re: ssh on hpux 11i MC/SG cluster

Anyone else our there have any suggestions?

Dale