Unable to logon into Checkpoint SecurePlatform through ssh (putty)

Posted on 2009-03-31
Medium Priority
Last Modified: 2013-11-16
I am no longer able to logon to Checkpoint SecurePlatform through ssh (putty).  Whenever I try, "invalid password" message appears.  I can successfully logon through https and locally using the same logon credentials.  The last change I made prior to this occurring was editing the /etc/passwd to change the admin:x:0:0::/home/admin:/bin/cpshell > bash.  This allows you to logon with the expert mode.   Any suggestions on how I maybe to fix this?
Question by:hotrod_952
  • 4
  • 2
LVL 14

Expert Comment

ID: 24028633
Are you using putty or a terminal program or are you ssh'ing from a linux command line?

If using the command line, try:

ssh <ip> -l admin    

Editing the passwd file as you have stated above should not have caused any issues - is there anything in /var/log/messages pertaining to the failed login?

For future reference, an easier way to change the shell is:

chsh -s /bin/bash admin

Author Comment

ID: 24028663
I'm using putty.  I can logon locally and https, but not with putty.  It doesn't like the password.
LVL 14

Accepted Solution

grimkin earned 2000 total points
ID: 24028694
Is there anything in the /var/log/messages file?
WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!


Author Comment

ID: 24028707
I can't verify that because the FW is located remotely.  I will need to have the IT support person check it.

Author Comment

ID: 24028929
I fix it.   I checked the log messages and indicated that authentication was falling.  I changed the it back to cpshell then back to shell.  SSH is working successfully again.

Author Comment

ID: 24050193

Featured Post

We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In response to a need for security and privacy, and to continue fostering an environment members can turn to for support, solutions, and education, Experts Exchange has created anonymous question capabilities. This new feature is available to our Pr…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

619 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question