login about faq

I just upgraded one of my test machines to server 6.2. It was running 6.1 with no issues. I did not make any modifications to the /etc/ssh2/ssh-server-config.xml and did not make any changes to file locations or permissions. When I run the start script the server fails to start with the following messages.

=================================================== Here are the lines it complains about.

Line 45 "<ca-certificate name="dodca-11" file="/etc/ssh2/cacerts/DODCA-11" disable-crls="yes"/>" Line 26 " <params> " Line 24 " <secsh-server> "

===================================================

debug[1423]: ssh-servant-g3: error in reading initial configuration from /etc/ssh2/ssh-server-config.xml (/etc/ssh2/ssh-server-config.xml:45: Failed to decode certificate /etc/ssh2/cacerts/DODCA-11: Public key operation failed / /etc/ssh2/ssh-server-config.xml:45: Failed to parse element ca-certificate'. / /etc/ssh2/ssh-server-config.xml:26: Failed to parse elementcert-validation'. / /etc/ssh2/ssh-server-config.xml:24: Failed to parse element `params'.).

debug[1421]: ssh-servant-g3: error in reading initial configuration from /etc/ssh2/ssh-server-config.xml (/etc/ssh2/ssh-server-config.xml:45: Failed to decode certificate /etc/ssh2/cacerts/DODCA-11: Public key operation failed / /etc/ssh2/ssh-server-config.xml:45: Failed to parse element ca-certificate'. / /etc/ssh2/ssh-server-config.xml:26: Failed to parse elementcert-validation'. / /etc/ssh2/ssh-server-config.xml:24: Failed to parse element `params'.).

debug[1425]: ssh-servant-g3: error in reading initial configuration from /etc/ssh2/ssh-server-config.xml (/etc/ssh2/ssh-server-config.xml:45: Failed to decode certificate /etc/ssh2/cacerts/DODCA-11: Public key operation failed / /etc/ssh2/ssh-server-config.xml:45: Failed to parse element ca-certificate'. / /etc/ssh2/ssh-server-config.xml:26: Failed to parse elementcert-validation'. / /etc/ssh2/ssh-server-config.xml:24: Failed to parse element `params'.).

debug[1422]: ssh-servant-g3: error in reading initial configuration from /etc/ssh2/ssh-server-config.xml (/etc/ssh2/ssh-server-config.xml:45: Failed to decode certificate /etc/ssh2/cacerts/DODCA-11: Public key operation failed / /etc/ssh2/ssh-server-config.xml:45: Failed to parse element ca-certificate'. / /etc/ssh2/ssh-server-config.xml:26: Failed to parse elementcert-validation'. / /etc/ssh2/ssh-server-config.xml:24: Failed to parse element `params'.).

ssh-server-g3: Failed to start any of the servants.

Anyone have an idea what 6.2 is looking for that 6.1 wasn't?

asked May 09 '11 at 22:37

JD's gravatar image

JD
1111


In 6.2.x, sha-2 support has been added, but it should be fully backwards compatible. To be able to troubleshoot this we need to have:

  1. The server configuration file.
  2. The actual DODCA-11 certificate
  3. Complete log of the attempt of booting the server.

I would recommend you to open a support ticket to address this issue.

link

answered May 10 '11 at 15:40

bca's gravatar image

bca ♦♦
4691012

This issue was an actual bug, and it is fixed in the Tectia Server version 6.2.1, which will be released around the end of June 2011.

link

answered May 27 '11 at 10:15

bca's gravatar image

bca ♦♦
4691012

edited May 27 '11 at 10:16

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×69
×10
×3
×1
×1

Asked: May 09 '11 at 22:37

Seen: 3,472 times

Last updated: May 27 '11 at 10:16

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.