One of my resolutions for the new year is to replace my crufty old
expect scripts with Capistrano. Unfortunately, I'm having trouble with
the :gateway mechanism. Our bastion servers are configured for two-
factor auth: public key and password. Capistrano, or Net::SSH, doesn't
seem to be able to handle that flavor of authentication. When I run
the following task, which just tests the ability to login to the
bastion server:
task :whos_on, :hosts => "my.bastion.server" do
run "who"
end
I get the following output:
$ cap whos_on
* executing `whos_on'
* executing "who"
servers: ["my.bastion.server"]
Password:
connection failed for: my.bastion.server
(Net::SSH::AuthenticationFailed: username)
I'm able to ssh to my.bastion.server with no problems. I'm also able
to set up a tunnel through it to any of our production boxes using
just straight ssh. Doing set :gateway, "my.bastion.server" in my
capfile gives me no joy either.
I have verified that the whos_on task works when run within the
production network where the boxes don't do two-factor auth. That's
why I'm focused on the two-factor thing. To be useful I really need
the :gateway mechanism to work.
Anyone have any ideas?
... WkH
--~--~---------~--~----~------------~-------~--~----~
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at http://groups.google.com/group/capistrano
-~----------~----~----~----~------~----~------~--~---
