Unable to SSH into Centos server unless root user The 2019 Stack Overflow Developer Survey Results Are InHow do you manage ssh keys to add a second user?SSH accepts publickey authetication but won't connect with an identify file?Cannot SSH into Ubunto 10.10 running on EC2 as new userOpenSSH disable ControlMaster for given hostnameProblems with SSHCan't SSH into Amazon EC2Unable to connect EC2 instance via sshIs it possible to ssh or rsync into a system whose file-system has remounted itself read-only?AWS :: Ubuntu instance consistently denying my private keysHow to properly use rsync Push with SSH on local macOS to remote Debian
Return to UK after being refused entry years previously
What are the motivations for publishing new editions of an existing textbook, beyond new discoveries in a field?
Earliest use of the term "Galois extension"?
Write faster on AT24C32
Is flight data recorder erased after every flight?
What does ひと匙 mean in this manga and has it been used colloquially?
What do the Banks children have against barley water?
Are children permitted to help build the Beis Hamikdash?
Which Sci-Fi work first showed weapon of galactic-scale mass destruction?
Origin of "cooter" meaning "vagina"
Why hard-Brexiteers don't insist on a hard border to prevent illegal immigration after Brexit?
What does Linus Torvalds mean when he says that Git "never ever" tracks a file?
What could be the right powersource for 15 seconds lifespan disposable giant chainsaw?
How to support a colleague who finds meetings extremely tiring?
Aging parents with no investments
Why do UK politicians seemingly ignore opinion polls on Brexit?
Is a "Democratic" Oligarchy-Style System Possible?
Where to refill my bottle in India?
Right tool to dig six foot holes?
Why isn't the circumferential light around the M87 black hole's event horizon symmetric?
Delete all lines which don't have n characters before delimiter
Is three citations per paragraph excessive for undergraduate research paper?
Can we generate random numbers using irrational numbers like π and e?
Can a rogue use sneak attack with weapons that have the thrown property even if they are not thrown?
Unable to SSH into Centos server unless root user
The 2019 Stack Overflow Developer Survey Results Are InHow do you manage ssh keys to add a second user?SSH accepts publickey authetication but won't connect with an identify file?Cannot SSH into Ubunto 10.10 running on EC2 as new userOpenSSH disable ControlMaster for given hostnameProblems with SSHCan't SSH into Amazon EC2Unable to connect EC2 instance via sshIs it possible to ssh or rsync into a system whose file-system has remounted itself read-only?AWS :: Ubuntu instance consistently denying my private keysHow to properly use rsync Push with SSH on local macOS to remote Debian
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;
I have a digital ocean droplet that currently allows me to login directly via the root user via SSH as the relevant keys have been added to the authorized_keys file.
ssh root@master // this works fine and i'm logged in as root
The problem comes when I try to login as a normal non-root user - I have the following output below when I run the following command:
Note I have added the relevant keys for 'bobby' to both the root authorized_keys file & the users authorized_keys file but am unable to login - any ideas?
Note - this is on a Centos server - it keeps returning the error Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
ssh bobby@master -vT
OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n 7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to master [123.456.789.111] port 22.
debug1: Connection established.
debug1: identity file /home/bobby/.ssh/id_rsa type 0
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.4
debug1: match: OpenSSH_7.4 pat OpenSSH* compat 0x04000000
debug1: Authenticating to master:22 as 'bobby'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:TLaJd7HJk3UVeqzrBgrQq6FfT1P20ZYAO918vRgU9Xg
debug1: Host 'master' is known and matches the ECDSA host key.
debug1: Found key in /home/bobby/.ssh/known_hosts:17
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<rsa-sha2-256,rsa-sha2-512>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Next authentication method: gssapi-keyex
debug1: No valid Key exchange context
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Next authentication method: publickey
debug1: Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Trying private key: /home/bobby/.ssh/id_dsa
debug1: Trying private key: /home/bobby/.ssh/id_ecdsa
debug1: Trying private key: /home/bobby/.ssh/id_ed25519
debug1: No more authentication methods to try.
bobby@master: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
centos ssh authentication unix ssh-keys
asked 14 hours ago
ZabsZabs
146238
add a comment |
I have a digital ocean droplet that currently allows me to login directly via the root user via SSH as the relevant keys have been added to the authorized_keys file.
ssh root@master // this works fine and i'm logged in as root
The problem comes when I try to login as a normal non-root user - I have the following output below when I run the following command:
Note I have added the relevant keys for 'bobby' to both the root authorized_keys file & the users authorized_keys file but am unable to login - any ideas?
Note - this is on a Centos server - it keeps returning the error Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
ssh bobby@master -vT
OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n 7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to master [123.456.789.111] port 22.
debug1: Connection established.
debug1: identity file /home/bobby/.ssh/id_rsa type 0
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.4
debug1: match: OpenSSH_7.4 pat OpenSSH* compat 0x04000000
debug1: Authenticating to master:22 as 'bobby'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:TLaJd7HJk3UVeqzrBgrQq6FfT1P20ZYAO918vRgU9Xg
debug1: Host 'master' is known and matches the ECDSA host key.
debug1: Found key in /home/bobby/.ssh/known_hosts:17
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<rsa-sha2-256,rsa-sha2-512>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Next authentication method: gssapi-keyex
debug1: No valid Key exchange context
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Next authentication method: publickey
debug1: Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Trying private key: /home/bobby/.ssh/id_dsa
debug1: Trying private key: /home/bobby/.ssh/id_ecdsa
debug1: Trying private key: /home/bobby/.ssh/id_ed25519
debug1: No more authentication methods to try.
bobby@master: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
centos ssh authentication unix ssh-keys
asked 14 hours ago
ZabsZabs
146238
add a comment |
I have a digital ocean droplet that currently allows me to login directly via the root user via SSH as the relevant keys have been added to the authorized_keys file.
ssh root@master // this works fine and i'm logged in as root
The problem comes when I try to login as a normal non-root user - I have the following output below when I run the following command:
Note I have added the relevant keys for 'bobby' to both the root authorized_keys file & the users authorized_keys file but am unable to login - any ideas?
Note - this is on a Centos server - it keeps returning the error Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
ssh bobby@master -vT
OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n 7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to master [123.456.789.111] port 22.
debug1: Connection established.
debug1: identity file /home/bobby/.ssh/id_rsa type 0
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.4
debug1: match: OpenSSH_7.4 pat OpenSSH* compat 0x04000000
debug1: Authenticating to master:22 as 'bobby'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:TLaJd7HJk3UVeqzrBgrQq6FfT1P20ZYAO918vRgU9Xg
debug1: Host 'master' is known and matches the ECDSA host key.
debug1: Found key in /home/bobby/.ssh/known_hosts:17
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<rsa-sha2-256,rsa-sha2-512>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Next authentication method: gssapi-keyex
debug1: No valid Key exchange context
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Next authentication method: publickey
debug1: Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Trying private key: /home/bobby/.ssh/id_dsa
debug1: Trying private key: /home/bobby/.ssh/id_ecdsa
debug1: Trying private key: /home/bobby/.ssh/id_ed25519
debug1: No more authentication methods to try.
bobby@master: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
centos ssh authentication unix ssh-keys
asked 14 hours ago
ZabsZabs
146238
I have a digital ocean droplet that currently allows me to login directly via the root user via SSH as the relevant keys have been added to the authorized_keys file.
ssh root@master // this works fine and i'm logged in as root
The problem comes when I try to login as a normal non-root user - I have the following output below when I run the following command:
Note I have added the relevant keys for 'bobby' to both the root authorized_keys file & the users authorized_keys file but am unable to login - any ideas?
Note - this is on a Centos server - it keeps returning the error Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
ssh bobby@master -vT
OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n 7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to master [123.456.789.111] port 22.
debug1: Connection established.
debug1: identity file /home/bobby/.ssh/id_rsa type 0
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/bobby/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.4
debug1: match: OpenSSH_7.4 pat OpenSSH* compat 0x04000000
debug1: Authenticating to master:22 as 'bobby'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:TLaJd7HJk3UVeqzrBgrQq6FfT1P20ZYAO918vRgU9Xg
debug1: Host 'master' is known and matches the ECDSA host key.
debug1: Found key in /home/bobby/.ssh/known_hosts:17
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<rsa-sha2-256,rsa-sha2-512>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Next authentication method: gssapi-keyex
debug1: No valid Key exchange context
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Unspecified GSS failure. Minor code may provide more information
No Kerberos credentials available (default cache: FILE:/tmp/krb5cc_1000)
debug1: Next authentication method: publickey
debug1: Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
debug1: Trying private key: /home/bobby/.ssh/id_dsa
debug1: Trying private key: /home/bobby/.ssh/id_ecdsa
debug1: Trying private key: /home/bobby/.ssh/id_ed25519
debug1: No more authentication methods to try.
bobby@master: Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
centos ssh authentication unix ssh-keys
centos ssh authentication unix ssh-keys
asked 14 hours ago
ZabsZabs
146238
asked 14 hours ago
ZabsZabs
146238
asked 14 hours ago
ZabsZabs
146238
asked 14 hours ago
ZabsZabs
146238
asked 14 hours ago
ZabsZabs
146238
146238
add a comment |
add a comment |
3 Answers
3
active
oldest
votes
In general: you can only debug so much from the client side; check the logs on the remote server too.
Typically sshd wil log why it refused access in /var/log/secure. (Fairly typical are ownership and permission problems on the ~/.ssh/authorized_keys.)
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
add a comment |
Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
d
That says it all. You have only enabled publickey authentication. Make sure you have valid authorized_keys for user since your rsa is rejected.
authorized_keys should be owned by user and chmod 700
answered 13 hours ago
Aroly7Aroly7
1344
add a comment |
As root on your Linux box, check to see the file "/etc/ssh/sshd_config" for a line of "AllowUsers".
Add there the users you want to be able to SSH and then run "service sshd restart".
Also, you may want to add that user to the SUDO'ers.
answered 13 hours ago
OvermindOvermind
1,278514
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f962404%2funable-to-ssh-into-centos-server-unless-root-user%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
In general: you can only debug so much from the client side; check the logs on the remote server too.
Typically sshd wil log why it refused access in /var/log/secure. (Fairly typical are ownership and permission problems on the ~/.ssh/authorized_keys.)
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
add a comment |
In general: you can only debug so much from the client side; check the logs on the remote server too.
Typically sshd wil log why it refused access in /var/log/secure. (Fairly typical are ownership and permission problems on the ~/.ssh/authorized_keys.)
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
add a comment |
In general: you can only debug so much from the client side; check the logs on the remote server too.
Typically sshd wil log why it refused access in /var/log/secure. (Fairly typical are ownership and permission problems on the ~/.ssh/authorized_keys.)
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
In general: you can only debug so much from the client side; check the logs on the remote server too.
Typically sshd wil log why it refused access in /var/log/secure. (Fairly typical are ownership and permission problems on the ~/.ssh/authorized_keys.)
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
answered 13 hours ago
HBruijnHBruijn
56.3k1190150
56.3k1190150
add a comment |
add a comment |
Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
d
That says it all. You have only enabled publickey authentication. Make sure you have valid authorized_keys for user since your rsa is rejected.
authorized_keys should be owned by user and chmod 700
answered 13 hours ago
Aroly7Aroly7
1344
add a comment |
Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
d
That says it all. You have only enabled publickey authentication. Make sure you have valid authorized_keys for user since your rsa is rejected.
authorized_keys should be owned by user and chmod 700
answered 13 hours ago
Aroly7Aroly7
1344
add a comment |
Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
d
That says it all. You have only enabled publickey authentication. Make sure you have valid authorized_keys for user since your rsa is rejected.
authorized_keys should be owned by user and chmod 700
answered 13 hours ago
Aroly7Aroly7
1344
Offering public key: RSA SHA256:1vSLjFQBt1RFnBAwsTqBRE6RWQM0lDyqBdIRblVhkk8 /home/bobby/.ssh/id_rsa
Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic
d
That says it all. You have only enabled publickey authentication. Make sure you have valid authorized_keys for user since your rsa is rejected.
authorized_keys should be owned by user and chmod 700
answered 13 hours ago
Aroly7Aroly7
1344
edited 13 hours ago
answered 13 hours ago
Aroly7Aroly7
1344
answered 13 hours ago
Aroly7Aroly7
1344
answered 13 hours ago
Aroly7Aroly7
1344
1344
add a comment |
add a comment |
As root on your Linux box, check to see the file "/etc/ssh/sshd_config" for a line of "AllowUsers".
Add there the users you want to be able to SSH and then run "service sshd restart".
Also, you may want to add that user to the SUDO'ers.
answered 13 hours ago
OvermindOvermind
1,278514
add a comment |
As root on your Linux box, check to see the file "/etc/ssh/sshd_config" for a line of "AllowUsers".
Add there the users you want to be able to SSH and then run "service sshd restart".
Also, you may want to add that user to the SUDO'ers.
answered 13 hours ago
OvermindOvermind
1,278514
add a comment |
As root on your Linux box, check to see the file "/etc/ssh/sshd_config" for a line of "AllowUsers".
Add there the users you want to be able to SSH and then run "service sshd restart".
Also, you may want to add that user to the SUDO'ers.
answered 13 hours ago
OvermindOvermind
1,278514
As root on your Linux box, check to see the file "/etc/ssh/sshd_config" for a line of "AllowUsers".
Add there the users you want to be able to SSH and then run "service sshd restart".
Also, you may want to add that user to the SUDO'ers.
answered 13 hours ago
OvermindOvermind
1,278514
answered 13 hours ago
OvermindOvermind
1,278514
answered 13 hours ago
OvermindOvermind
1,278514
answered 13 hours ago
OvermindOvermind
1,278514
1,278514
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f962404%2funable-to-ssh-into-centos-server-unless-root-user%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
