- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Trust System + ssh
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-27-2005 09:16 PM
07-27-2005 09:16 PM
I move my system to Trust-System mode, and now i can not login to the system with ssh:
I get the password promt and after writing the password i get connection closed.
It worked before the move to Turst-System, it looks like configuration problem (maybe at pam) ??? i do not have many much data at the syslog.log file. any tips ...
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-27-2005 09:19 PM
07-27-2005 09:19 PM
Re: Trust System + ssh
- any errors in syslog
- any errors you see on screen
- your /etc/sshd/sshd_config file
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-27-2005 11:44 PM
07-27-2005 11:44 PM
Re: Trust System + ssh
Some things to try
1.Normally, when the system is converted to Trusted mode all the users passwords are expired. - Check whether your password had expired.
2. Do you use NIS or NIS+?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-27-2005 11:50 PM
07-27-2005 11:50 PM
Re: Trust System + ssh
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-27-2005 11:57 PM
07-27-2005 11:57 PM
Re: Trust System + ssh
I got your same problem converting my server after a new installation.
Some configuration of nsswitch.file are not supported by trusted systems.
I correct my nsswitch file using only files and dns (not "compact" entries) and it has come back to work fine.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-28-2005 12:00 AM
07-28-2005 12:00 AM
Re: Trust System + ssh
Try to enable verbose with ssh -vvv and post output.
hth.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-30-2005 08:09 PM
07-30-2005 08:09 PM
Re: Trust System + ssh
I install this version: T1471AA A.04.00.000 HP-UX Secure Shell.
I do not user NIS or NIS+, Here is the output file of with all the answers:
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-31-2005 04:34 PM
07-31-2005 04:34 PM
Re: Trust System + ssh
Use /opt/ssh/sbin/sshd -ddde for debug output
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-31-2005 06:20 PM
07-31-2005 06:20 PM
Re: Trust System + ssh
When you convert your system to trusted accounts tend to get locked. for a variety of reasons.
run /usr/lbin/getprpw accountname
look and make sure the lockout= is all 0s and alock= is no or false.
You can correct a locked account with
/usr/lbin/modprpw -k username
or -v to reset expire time.
also as far as ssh you will be prompted for your password unless you have valid keys on both sides setup correctly and you have a null passphrase. Double check your permissions/owerships too on the key files and directories. That can cause you grief too :) and security problems too.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-31-2005 07:39 PM
07-31-2005 07:39 PM
Re: Trust System + ssh
Here is the output of the sshd with debug.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-31-2005 08:21 PM
07-31-2005 08:21 PM
Re: Trust System + ssh
Home have to be at least 755 (drwxr-xr-x) and .ssh have to be 700 (drwx------)
RGDS
Mauro
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-31-2005 09:00 PM
07-31-2005 09:00 PM
Re: Trust System + ssh
I guess you have missed to attach the debug file. Please attach it.
Also that, once the system is converted to trusted, the ssh login process will be as shown below
# ssh -l
The authenticity of host 'localhost (127.0.0.1)' can't be established.
RSA key fingerprint is 6a:e4:7d:67:93:78:39:29:4e:ab:6b:af:98:00:37:8f.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'localhost' (RSA) to the list of known hosts.
Password:
Last successful login for
Last unsuccessful login for
Your password has expired.
Changing password for
Old password:
These messgaes are not present in your logs. If possible try to convert back to normal system and use /etc/tsconvert to convert again to trusted.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-03-2005 04:29 AM
08-03-2005 04:29 AM
Re: Trust System + ssh
Sorry here is the file:
I also convert back the system and ssh works great, convert to trust-system again, ssh dows not work.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-03-2005 12:05 PM
08-03-2005 12:05 PM
Re: Trust System + ssh
In /opt/ssh/etc/sshd_config set
UsePrivilegeSeparation no
and restart sshd.
BTW as other folks have requested you should really provide most detailed debug trace (e.g. with -ddd). It looks like you ran sshd with only one -d.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-03-2005 01:04 PM
08-03-2005 01:04 PM
Solutionssh -vvv -o PreferredAuthentications=password username@hostname
hope this helps,
-denver
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-03-2005 01:04 PM
08-03-2005 01:04 PM
Re: Trust System + ssh
make sure they didnt get locked or expired after confverting.
I posted how to fix those above.
Also glance at /etc/securetty and more sure its ok. Have you tried an account beside root?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-03-2005 07:54 PM
08-03-2005 07:54 PM
Re: Trust System + ssh
I try :
ssh -vvv -o PreferredAuthentications=password username@hostname, and it works !!!
But i did not find this option in the ssh_config or sshd_config files.
How can i make it permanent ?
10x
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-03-2005 11:05 PM
08-03-2005 11:05 PM
Re: Trust System + ssh
-denver
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-03-2005 11:39 PM
08-03-2005 11:39 PM
Re: Trust System + ssh
PreferredAuthentications password