Can't get authorized_keys to work

From: Neil Aggarwal (neil@JAMMConsulting.com)
Date: 04/09/03

  • Next message: olaf weiser: "Re: installation problems v 5.6.1"
    From: "Neil Aggarwal" <neil@JAMMConsulting.com>
    To: "SSH mailing list" <secureshell@securityfocus.com>
    Date: Tue, 8 Apr 2003 20:02:38 -0500
    
    

    Hello:

    I am trying to use cygwin to set-up an authorized_keys file
    on my server to allow me to automatically login without a
    password.

    My client machine is Windows 2000 Professional and the server
    is RedHat Linux 7.3. The sshd on the server is OpenSSH_3.1p1

    I ran the cygwin shell by double-clicking the icon that it created
    on the desktop.

    Next, I connected to my server by typing:
    ssh neil@cvs.JAMMConsulting.com
    It asked me to accept the host key and then my password.
    I logged on successfully. Then, I logged out of the server.

    I then tried to create the keys by typing:
            ssh-keygen -t rsa
    I hit return on all of the prompts. This created
    an id_rsa and id_rsa.pub in the .ssh directory under my
    home directory.

    I then transferred the id_rsa.pub file to the server by
    first logging onto the server using
            sftp neil@cvs.JAMMConsulting.com
    It asked me for my password so I supplied it.
    Once in, I had to create an .ssh directory, so I did
    these commands:
            mkdir .ssh
            cd .ssh
    I then transferred the file with this command:
            put id_rsa.pub authorized_keys
    Once finished, I exited the sftp session and tried
    logging in again with:
            ssh neil@cvs.JAMMConsulting.com
    But it is still asking for a password.

    When I use:
            ssh -v neil@cvs.JAMMConsulting.com

    I get these messages:

    OpenSSH_3.6.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
    debug1: Rhosts Authentication disabled, originating port will not be
    trusted.
    debug1: Connecting to cvs.JAMMConsulting.com [204.130.252.206] port 22.
    debug1: Connection established.
    debug1: identity file /home/Neil Aggarwal/.ssh/identity type -1
    debug1: identity file /home/Neil Aggarwal/.ssh/id_rsa type 1
    debug1: identity file /home/Neil Aggarwal/.ssh/id_dsa type -1
    debug1: Remote protocol version 1.99, remote software version OpenSSH_3.1p1
    debug1: match: OpenSSH_3.1p1 pat OpenSSH_2.*,OpenSSH_3.0*,OpenSSH_3.1*
    debug1: Enabling compatibility mode for protocol 2.0
    debug1: Local version string SSH-2.0-OpenSSH_3.6.1p1
    debug1: SSH2_MSG_KEXINIT sent
    debug1: SSH2_MSG_KEXINIT received
    debug1: kex: server->client aes128-cbc hmac-md5 none
    debug1: kex: client->server aes128-cbc hmac-md5 none
    debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
    debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
    debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
    debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
    debug1: Host 'cvs.jammconsulting.com' is known and matches the RSA host key.
    debug1: Found key in /home/Neil Aggarwal/.ssh/known_hosts:1
    debug1: ssh_rsa_verify: signature correct
    debug1: SSH2_MSG_NEWKEYS sent
    debug1: expecting SSH2_MSG_NEWKEYS
    debug1: SSH2_MSG_NEWKEYS received
    debug1: SSH2_MSG_SERVICE_REQUEST sent
    debug1: SSH2_MSG_SERVICE_ACCEPT received
    debug1: Authentications that can continue:
    publickey,password,keyboard-interacti
    ve
    debug1: Next authentication method: publickey
    debug1: Trying private key: /home/Neil Aggarwal/.ssh/identity
    debug1: Offering public key: /home/Neil Aggarwal/.ssh/id_rsa
    debug1: Authentications that can continue:
    publickey,password,keyboard-interacti
    ve
    debug1: Trying private key: /home/Neil Aggarwal/.ssh/id_dsa
    debug1: Next authentication method: keyboard-interactive
    debug1: Authentications that can continue:
    publickey,password,keyboard-interacti
    ve
    debug1: Next authentication method: password
    neil@cvs.jammconsulting.com's password:

    Any ideas?

    Thanks,
            Neil.

    --
    Neil Aggarwal
    JAMM Consulting, Inc.    (972) 612-6056, http://www.JAMMConsulting.com
    Custom Internet Development    Websites, Ecommerce, Java, databases
    

  • Next message: olaf weiser: "Re: installation problems v 5.6.1"

    Relevant Pages

    • Re: problem with HostbasedAuthentication
      ... I may have missed some of the details, so I apologize if this has been covered, but if you want to do a host-based authentication, the SSH config's (client and server). ... debug3: Wrote 48 bytes for a total of 1063 ... debug1: Authentications that can continue: publickey,password,hostbased ...
      (SSH)
    • Non root scp problem
      ... This is a production web server and the webmaster uses a non-root account to copy files constantly. ... debug1: Connecting to ares port 22. ... invalid collation element ...
      (SSH)
    • SSH and LDAP
      ... We are installing an LDAP server for AIX and Solaris login ... "Too many authentication failures for " ... debug1: ssh_rsa_verify: signature correct ... debug3: preferred publickey,keyboard-interactive,password ...
      (comp.unix.aix)
    • LDAP and OpenSSH
      ... We are installing an LDAP server for AIX and Solaris login ... "Too many authentication failures for " ... debug1: ssh_rsa_verify: signature correct ... debug3: preferred publickey,keyboard-interactive,password ...
      (comp.security.ssh)
    • Re: Trouble with OpenSSH 3.4p1 - Cant connect with an RSA key pair
      ... >> I have a computer functioning as a server using RedHat 8.0 with OpenSSH ... I am experiencing a similar problem using passkey authentication with the ... < debug2: bits set: 1604/3191 ... < debug1: Server accepts key: pkalg ssh-rsa blen 149 ...
      (comp.security.ssh)