Re: [PLUG] Problems with password-less SSH

linc on 21 Jul 2010 07:10:27 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Problems with password-less SSH

From: linc <linc@lincgeek.org>

To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>

Subject: Re: [PLUG] Problems with password-less SSH

Date: Wed, 21 Jul 2010 10:10:11 -0400

Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>

Sender: plug-bounces@lists.phillylinux.org

User-agent: Thunderbird 2.0.0.24 (X11/20100411)

Mike Leone wrote:
I had this working, between 2 hosts. Then I had to replace one of them,and I can't seem to get it to work anymore ...
What I need to do:
I need to execute a command on a remote server in my DMZ, and I havebeen doing this via cron. So user "vadmin@admnftp002" needs to execute acommand as "FileCollector@192.168.1.30".
What I did:
As user "vadmin@admnftp002", I created new SSH keys, with no password.(I decided to make new keys, rather than keep the old ssh keys I used touse. This may have been a mistake ...I still have a copy of the old keysthat worked on the old remote box, tho).

I did this by "ssh-keygen -t rsa". Then I copied the public file to"FileCollector@192.168.1.30" with
ssh-copy-id -i id_rsa.pub FileCollector@192.168.1.30 But when I try and test it, I get prompted for a password: vadmin@admnftp002:~/.ssh$ ssh FileCollector@192.168.1.30 uptime FileCollector@192.168.1.30's password:
Now, the remote machine is brand-new install of RHEL 5.4. I checked it'sSSH config, and changed:
RSAAuthentication yes PubkeyAuthentication yes UsePAM no
and restarted SSH on the remote server, but am still prompted for apassword. I am following these directions:
<http://www.debian-administration.org/articles/152>
This used to work, when the remote server was a Debian box. These werethe same directions I used back then. But now it's a no-go. Any ideaswhere to find out why? I'm guessing I forgot something in a config, ormissed a step, but can't figure out where. If I look in"~/.ssh/authorized_keys" on 192.168.1.30, I do see my"vadmin@admnftp002" key listed.
Thanks

Hey Mike, check your permissions on theFileCollector@192.168.1.30:.ssh/authorized_keysShould be probably no more than 600 (-rw-------). Every time I hit asnag with passwordless ssh auth, it's permissions related to that file.
-- -Linc Fessenden In the Beginning there was nothing, which exploded - Yeah right... ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:

Re: [PLUG] Problems with password-less SSH
From: Mike Leone <turgon@mike-leone.com>

References:

[PLUG] Problems with password-less SSH
From: Mike Leone <turgon@mike-leone.com>

Prev by Date: Re: [PLUG] Problems with password-less SSH

Next by Date: Re: [PLUG] Problems with password-less SSH

Previous by thread: Re: [PLUG] Problems with password-less SSH - SOLVED

Next by thread: Re: [PLUG] Problems with password-less SSH

Index(es):

Date

Thread