Solved

password-less ssh from Redhat Linux to Solaris NIS server

Posted on 2007-12-04
4
2,393 Views
Last Modified: 2013-12-19
I tried for hours to get password-less ssh working to a Solaris NIS server from a RedHat with no luck.  Below is the verbose output from the ssh attempt last made.  Can you see if you can figure it out, please? We need to keep it SSHv2 and leave v1 disabled.  

[usew@w8654usew ~/.ssh]$ ssh -v s8654geo1
OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: Connecting to s8654geo1 [10.20.5.5] port 22.
debug1: Connection established.
debug1: identity file /net/home/usew/.ssh/identity type -1
debug1: identity file /net/home/usew/.ssh/id_rsa type 1
debug1: identity file /net/home/usew/.ssh/id_dsa type 2
debug1: Remote protocol version 2.0, remote software version Sun_SSH_1.1
debug1: no match: Sun_SSH_1.1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 's8654geo1' is known and matches the RSA host key.
debug1: Found key in /net/home/usew/.ssh/known_hosts:7
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: gssapi-keyex,gssapi-with-mic,publicke        y,password,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /net/home/usew/.ssh/identity
debug1: Offering public key: /net/home/usew/.ssh/id_rsa
debug1: Authentications that can continue: gssapi-keyex,gssapi-with-mic,publicke        y,password,keyboard-interactive
debug1: Offering public key: /net/home/usew/.ssh/id_dsa
debug1: Authentications that can continue: gssapi-keyex,gssapi-with-mic,publicke        y,password,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
Password:
0
Comment
Question by:danieliturbe
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 14

Expert Comment

by:arrkerr1024
ID: 20409180
Did you run ssh-keygen to generate a private key, and then copy the contents of .ssh/id_rsa (or dsa) to .ssh/authorized_keys on the remote machine?  If you did and it still doesn't work, ssh can be VERY picky about the permissions on both sides, especially if it is told to be very strict in the config file.  It need all of the files ALL of the way up to the home directory to be pretty much restricted to just the user account.  Not just the .ssh directory, but the user's home directory and /home.

Let us know what you've done so far as far as key generator, and double-check permissions.  Worst case, rather than just running debug on the client side, also run ssh in the foreground with debugging on on the server side too.
0
 
LVL 40

Accepted Solution

by:
omarfarid earned 500 total points
ID: 20598917
Hi sirbounty,

As you can see links were provided on how to set password-less access. I think this is an answer that should be accepted.

0

Featured Post

WordPress Tutorial 2: Terminology

An important part of learning any new piece of software is understanding the terminology it uses. Thankfully WordPress uses fairly simple names for everything that make it easy to start using the software.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This program is used to assist in finding and resolving common problems with wireless connections.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question