I'm setting up RSA keys for the oracle accounts on my 6 RHEL machines so
that I can ssh into each on as oracle without
a password. I created the /home/oracle/.ssh files on each node.
rwx------ 2 oracle oinstall 4096 Mar 23 14:34 .
drwxr-xr-x 5 oracle oinstall 4096 Mar 23 13:24 ..
-rw-r--r-- 1 oracle oinstall 5076 Mar 23 14:34 authorized_keys
-rwx------ 1 oracle oinstall 96 Mar 23 10:59 genkeys
-rw------- 1 oracle oinstall 668 Mar 23 14:25 id_dsa
-rw-r--r-- 1 oracle oinstall 613 Mar 23 14:25 id_dsa.pub
-rw------- 1 oracle oinstall 887 Mar 23 14:25 id_rsa
-rw-r--r-- 1 oracle oinstall 233 Mar 23 14:25 id_rsa.pub
-rw-r--r-- 1 oracle oinstall 1380 Mar 22 12:27 known_hosts
All of them work except for one node. When I ssh into this particular
node it doesn't want to use the rsa keys it reverts
to the standard login and prompts me for a password for oracle which is
shouldn't do.
This is the machine that doesn't work
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: /u01/app/oracle/.ssh/identity ((nil))
debug2: key: /u01/app/oracle/.ssh/id_rsa (0x552abfe690)
debug2: key: /u01/app/oracle/.ssh/id_dsa (0x552abfe6b0)
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug1: Next authentication method: gssapi-with-mic
debug2: we sent a gssapi-with-mic packet, wait for reply
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug2: we sent a gssapi-with-mic packet, wait for reply
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug2: we did not send a packet, disable method
debug1: Next authentication method: publickey
debug1: Trying private key: /u01/app/oracle/.ssh/identity
debug1: Offering public key: /u01/app/oracle/.ssh/id_rsa
debug2: we sent a publickey packet, wait for reply
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< Server never accepts public key packet
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug1: Offering public key: /u01/app/oracle/.ssh/id_dsa
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug2: we did not send a packet, disable method
debug1: Next authentication method: password
oracle@cck1's password: <<<<<<<<<<<<<<<<<<<<< This is not what I want
This machine does work
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: /u01/app/oracle/.ssh/identity ((nil))
debug2: key: /u01/app/oracle/.ssh/id_rsa (0x552abfe690)
debug2: key: /u01/app/oracle/.ssh/id_dsa (0x552abfe6b0)
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug1: Next authentication method: gssapi-with-mic
debug2: we sent a gssapi-with-mic packet, wait for reply
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug2: we sent a gssapi-with-mic packet, wait for reply
debug1: Authentications that can continue:
publickey,gssapi-with-mic,password
debug2: we did not send a packet, disable method
debug1: Next authentication method: publickey
debug1: Trying private key: /u01/app/oracle/.ssh/identity
debug1: Offering public key: /u01/app/oracle/.ssh/id_rsa
debug2: we sent a publickey packet, wait for reply
debug1: Server accepts key: pkalg ssh-rsa blen 149
<<<<<<<<<<<<<<<<<<<<<<<<<<<< Server accepts the key which is good
debug2: input_userauth_pk_ok: fp
a9:c4:1b:8a:89:83:49:a1:0a:aa:50:cc:18:75:d8:93
debug1: PEM_read_PrivateKey failed
debug1: read PEM private key done: type <unknown>
Enter passphrase for key '/u01/app/oracle/.ssh/id_rsa': <<<<<<<<<<<<<
This is correct and what I want
Any suggestions would be greatly appreciated.
David Martini
LLNL
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
