login about faq

Hi,

I am using SSH Tectia 6 in RHEL 5.1 Linux box.In that, I can't login direct root from my client.The authentication method Which we used in ssh-server-config.xml file is below

<--Root user only able to login Public key authentication-->

We would like to change Public key authentication to Password based authentication for ROOT user. Please provide valid configuration setup for password based authentication.

Thanks Dhiva

asked Mar 24 '10 at 12:56

Dhiva's gravatar image

Dhiva
111

edited Mar 24 '10 at 17:09

Ville%20Laurikari's gravatar image

Ville Laurikari ♦
131129

The XML snippet you give looks like a comment (although it's missing the "!" from the opening tag). It does nothing. Can you include the entire configuration in your question?

(Mar 24 '10 at 17:10) Ville Laurikari ♦ Ville%20Laurikari's gravatar image

Something like this in the authentication-methods section should allow root to login with password only, and other users with public keys or passwords:

<authentication-methods>
  <!-- Root can login using a password. -->
  <authentication>
    <selector>
      <user-privileged />
    </selector>
    <auth-password />
    <auth-keyboard-interactive />
  </authentication>

  <!-- Others can login using a password or public key. -->
  <authentication>
    <auth-publickey />
    <auth-password />
    <auth-keyboard-interactive />
  </authentication>

</authentication-methods>

Not 100% sure if this is what you needed. Note that the above is not a full configuration file, you must replace your existing authentication-methods section with this.

link

answered Mar 24 '10 at 13:18

Ville%20Laurikari's gravatar image

Ville Laurikari ♦
131129

edited Mar 24 '10 at 17:14

Hi Ville,

Thanks for the config. I have tried this too but it's not working.Please find below the message logged in /var/log/secure

pam_unix2[24614]: pam_unix2: session started for user root, service crond

After I typed "root" in login prompt, the session is vanished.

Thanks, Dhiva

link

answered Mar 24 '10 at 13:31

Dhiva%201's gravatar image

Dhiva 1
1

The log message you give is not from Tectia Server, so it's of no help in debugging this issue. All syslog messages from Tectia Server begin with the string "ssh-server-g3".

(Mar 24 '10 at 17:12) Ville Laurikari ♦ Ville%20Laurikari's gravatar image
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×38
×15
×5

Asked: Mar 24 '10 at 12:56

Seen: 7,499 times

Last updated: Apr 07 '11 at 08:22

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.