login about faq

Hi,

Does Tectia support connections from Tunnelier clients?

I've tried a connection from a Tunnelier client but get an error:

The error line in the log is: Jan 18 11:30:45 SERVERXYZ ssh-server-g3:1001 Algorithm negotiation failure, Algorithm: Host key algorithm, Client algorithms: ssh-rsa,ssh-dss, Server algorithms: x509v3-sign-rsa, Session-Id: xx

It appears that Tectia will only use X509v3-sign-rsa when negotiating the host-key algorithm can it be configured to also use ssh-rsa or ssh-dsa?

Regards

asked Jan 18 '12 at 16:47

pete_w's gravatar image

pete_w
1111

Hi Martin,

Thanks for prompt response. Currently I am acting as the admin for the server, can you advise how to enable the default algorithms? i.e. what configuration file do I need to modify?

Regards Pete

(Jan 19 '12 at 11:02) pete_w pete_w's gravatar image

If you have server on Windows platform, then you only need to add the path to a host key in "Identity" settings of Tectia Server configuration GUI.

On other platforms you will have to edit manually the server configuration file /etc/ssh2/ssh-server-config.xml. Check the <hostkey-algorithms/> element (the supported algorithms list) and <hostkey/> element (the actual host key/certificate).

See also e.g: http://www.tectia.com/manuals/server-admin/62/serverauth-pk.html and http://www.tectia.com/manuals/server-admin/62/ssh-server-config.html .

Regards, Martin

(Jan 19 '12 at 23:35) Martin Dobsik ♦ Martin%20Dobsik's gravatar image

I believe ssh-rsa and ssh-dss are the default algorithms of most of the SSH servers, including Tectia SSH. You will have to talk to the administrator of the server you are connecting to if he/she would enable for you the default algorithms, or configure your Tunnelier installation to use certificates for server host authentication.

Tectia SSH client and server are interoperable with any third party product that implements secure shell protocol. Therefore, I see no reason why it shouldn't work with Tunnelier.

I hope this helps,

Regards,

Martin

link

answered Jan 18 '12 at 23:11

Martin%20Dobsik's gravatar image

Martin Dobsik ♦
599126

edited Jan 19 '12 at 14:14

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×17

Asked: Jan 18 '12 at 16:47

Seen: 2,999 times

Last updated: Jan 19 '12 at 23:35

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.