ssh with RSA keys on XP wont authenticate

• Previous message: Yannick CHAMPS: "allow psftp or pscp but not ssh"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 9 May 2005 19:01:04 -0700

I have a VPN system that I wrote that uses port forwarding from a
windows client to a Linux server.

I use peices of the OpenSSH client kit on the windows client.

The ssh authentication is done using a RSA key that is generated on the
server then shipped to the client (along with other client software.)

Everything works well on Win98, Win2K, Win2003, and most WinXP systems.

So far I have run into a problem on two seperate Win XP-Pro SP2 systems
where the RSA keys are being ignored and a pass phrase is being
requested.

Can anyone suggest why this is happening.

Here is the verbose ssh output from a test session ....
(IP addresses have been changed to protect the inocent)

C:\>\sshvpn\bin\ssh -v -p 1234 -i \.ssh\vpn-107_id_dsa
vpn-107@192.168.118.72
OpenSSH_3.6.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
debug1: Rhosts Authentication disabled, originating port will not be
trusted.
debug1: Connecting to 192.168.118.72 [192.168.118.72] port 1234.
debug1: Connection established.
debug1: identity file \\.ssh\\vpn-107_id_dsa type -1
debug1: Remote protocol version 1.99, remote software version
OpenSSH_3.7.1p1
debug1: match: OpenSSH_3.7.1p1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '192.168.118.72' is known and matches the RSA host key.
debug1: Found key in /cygdrive/c/.ssh/known_hosts:1
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey
debug1: Next authentication method: publickey
debug1: Trying private key: \\.ssh\\vpn-107_id_dsa
Enter passphrase for key '\.ssh\vpn-107_id_dsa':
debug1: No more authentication methods to try.
Permission denied (publickey).
debug1: Calling cleanup 0x41b2a0(0x0)

C:\>

Many thanks for any help you can offer.
Dave Gempton.

• Previous message: Yannick CHAMPS: "allow psftp or pscp but not ssh"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]