mmg-wm
May 2nd, 2008, 07:30 PM
Hopefully someone can help.
I have 3 systems (All running 6.06.2 server) that I'm trying to get to communicate using SSL certificates (srvg1, srvg2,srvb1). I've create certs on all boxes using "ssh-keygen -t rsa" and saved the "id_rsa.pub" info into the "$USER/.ssh/authorized_keys" file on all boxes. srvg1 and srvg2 can communicate fine in both directions. srvb1 can ssh to both srvg1 and srvg2 without issue, but I can't initiate a ssh tunnel from srvg1 or srvg2 to srvb1 without being prompted for a password. It will work with a password, but I need to schedule jobs without requiring the password.
Here are the steps I've taken so far:
* update everything with apt-get
* verify that file permissions on all servers are the same for .ssh directory and files(note, all users are using a login account "administrator").
* make sure the /etc/ssh/ssh_confi and sshd_conf files are the same
I then ssh <IP ADDRESS> -vvv. It looks like srvb1 isn't responding from the following snippet:
debug1: Trying private key: /home/administrator/.ssh/identity
debug3: no such identity: /home/administrator/.ssh/identity
debug1: Offering public key: /home/administrator/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password
compared to the following snippet when everything works:
debug1: Trying private key: /home/administrator/.ssh/identity
debug3: no such identity: /home/administrator/.ssh/identity
debug1: Offering public key: /home/administrator/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Server accepts key: pkalg ssh-rsa blen 277
debug2: input_userauth_pk_ok: fp f8:31:75:11:57:1e:2e:81:39:20:ab:51:2b:83:1b:d5
debug3: sign_and_send_pubkey
debug1: read PEM private key done: type RSA
debug1: Authentication succeeded (publickey).
Any ideas? Thanks in advance for your help. I'm a newbie and I've been banging my head trying to figure this one out.
Moe
I have 3 systems (All running 6.06.2 server) that I'm trying to get to communicate using SSL certificates (srvg1, srvg2,srvb1). I've create certs on all boxes using "ssh-keygen -t rsa" and saved the "id_rsa.pub" info into the "$USER/.ssh/authorized_keys" file on all boxes. srvg1 and srvg2 can communicate fine in both directions. srvb1 can ssh to both srvg1 and srvg2 without issue, but I can't initiate a ssh tunnel from srvg1 or srvg2 to srvb1 without being prompted for a password. It will work with a password, but I need to schedule jobs without requiring the password.
Here are the steps I've taken so far:
* update everything with apt-get
* verify that file permissions on all servers are the same for .ssh directory and files(note, all users are using a login account "administrator").
* make sure the /etc/ssh/ssh_confi and sshd_conf files are the same
I then ssh <IP ADDRESS> -vvv. It looks like srvb1 isn't responding from the following snippet:
debug1: Trying private key: /home/administrator/.ssh/identity
debug3: no such identity: /home/administrator/.ssh/identity
debug1: Offering public key: /home/administrator/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,password
compared to the following snippet when everything works:
debug1: Trying private key: /home/administrator/.ssh/identity
debug3: no such identity: /home/administrator/.ssh/identity
debug1: Offering public key: /home/administrator/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Server accepts key: pkalg ssh-rsa blen 277
debug2: input_userauth_pk_ok: fp f8:31:75:11:57:1e:2e:81:39:20:ab:51:2b:83:1b:d5
debug3: sign_and_send_pubkey
debug1: read PEM private key done: type RSA
debug1: Authentication succeeded (publickey).
Any ideas? Thanks in advance for your help. I'm a newbie and I've been banging my head trying to figure this one out.
Moe