Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 850
  • Last Modified:

ssh rsa key issue in rhel5 and 6

Hi

My machine rsa key is not working ....showing some kerberos issue while connecting via secure crt tool please help
0
apunkabollywood
Asked:
apunkabollywood
  • 3
  • 2
3 Solutions
 
Daniel McAllisterPresident, IT4SOHO, LLCCommented:
SecureCRT is an SSH tool. If it is reporting an RSA key failure, it is most likely because the RSA key being used at one end or the other has either been changed or has expired.

Suggest you look through the discussion at
http://forums.vandyke.com/archive/index.php/t-2185.html

The idea of an RSA key is that the two ends each have an encryption key that they use to talk to each other. If either key gets changed (or corrupted), or expires, then the connection is marked as invalid.

I hope the link is able to help...

Dan
IT4SOHO
0
 
apunkabollywoodAuthor Commented:
This is the reason and log of trace option

[LOCAL] : RECV : USERAUTH_FAILURE, continuations [publickey,gssapi-with-mic,password]
[LOCAL] : SENT : USERAUTH_REQUEST [publickey (ssh-dss) - unsigned,fingerprint: 1a:ca:c8:c5:3e:f0:43:ad:f9:c8:41:3d:9d:28:e9:55]
[LOCAL] : RECV : USERAUTH_FAILURE, continuations [publickey,gssapi-with-mic,password]
[LOCAL] : SENT : USERAUTH_REQUEST [publickey (ssh-dss) - unsigned,agent,fingerprint: 1a:ca:c8:c5:3e:f0:43:ad:f9:c8:41:3d:9d:28:e9:55]
[LOCAL] : RECV : USERAUTH_FAILURE, continuations [publickey,gssapi-with-mic,password]
[LOCAL] : GSS SPN : host@server
[LOCAL] : [SSPI/1.2.840.113554.1.2.2] : Authentication could not be started.
[LOCAL] : [SSPI/1.2.840.113554.1.2.2] : The specified target is unknown or unreachable  
[LOCAL] : GSS : All available mechanisms failed.
[LOCAL] : SEND: Disconnect packet: Unable to authenticate using any of the configured authentication methods.  
[LOCAL] : Changing state from STATE_CONNECTION to STATE_SEND_DISCONNECT
[LOCAL] : RECV: TCP/IP close
[LOCAL] : Changing state from STATE_SEND_DISCONNECT to STATE_CLOSED
[LOCAL] : Connected for 15 seconds, 2603 bytes sent, 2436 bytes received
[LOCAL] : Stream has closed [CLOSE_TYPE_NONSPECIFIC] : The client has disconnected from the server.  Reason: Unable to authenticate using any of the configured authentication methods.  

The client has disconnected from the server.  Reason:
Unable to authenticate using any of the configured authentication methods.
0
 
Daniel McAllisterPresident, IT4SOHO, LLCCommented:
Is it possible you changed your password on one of the machines?
(some of the auth methods tried are sending the auth data on the local system to the remote one).

I'm also assuming you modified the part of the log file where it says you're trying to connect to "host@server" -- which isn't resolving on your source (ssh client) system.

Dan
IT4SOHO
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
1ly4meCommented:
You might need some changes on sshd config file to allow remote ssh logins
0
 
apunkabollywoodAuthor Commented:
i have tried changing password but no it doesnt work ...

@ 1ly4me could you pls list what changes i need to do in sshd config file to allow - i have tried most but still need to confirm
0
 
Daniel McAllisterPresident, IT4SOHO, LLCCommented:
I am glad you found the problem... one thing to add for posterity (that I failed to think of earlier)... if you look through your log (/var/log/messages) you MAY find that your selinux is preventing the sshd daemon from accessing the /etc/passwd file, and thus all authentication may fail.

Dan
IT4SOHO
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now