I have cross verified about all directory and files permission you suggested earlier.
z/OS USS side drwx------ 2 MEAS OMVSGRP 8192 Dec 6 01:47 .ssh -rw------- 1 MEAS OMVSGRP 668 Dec 6 01:47 id_dsa -rw-r--r-- 1 MEAS OMVSGRP 603 Dec 6 01:47 id_dsa.pub -rw-r--r-- 1 MEAS OMVSGRP 175 Dec 6 01:08 known_hosts and in the target host, I have drwx------ 2 ibm08 staff 256 Dec 07 07:58 .ssh -rw------- 1 ibm08 staff 603 Dec 07 07:58 authorized_keys -rw-r--r-- 1 ibm08 staff 176 Dec 06 11:57 known_hosts Then I also run below command sftp -v -b - [email protected] from USS and got similar error, Hide quoted text debug1: identity file /u/ibm08/.ssh/id_rsa-cert type -1 debug1: identity file /u/ibm08/.ssh/id_dsa type 2 debug1: identity file /u/ibm08/.ssh/id_dsa-cert type -1 debug1: identity file /u/ibm08/.ssh/id_ecdsa type -1 debug1: identity file /u/ibm08/.ssh/id_ecdsa-cert type -1 debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_6.4 debug1: Remote protocol version 2.0, remote software version OpenSSH_6.0 debug1: match: OpenSSH_6.0 pat OpenSSH* debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: mac_setup_by_alg: hmac-sha1 from source OpenSSL debug1: kex: server->client aes128-ctr hmac-sha1 none debug1: mac_setup_by_alg: hmac-sha1 from source OpenSSL debug1: kex: client->server aes128-ctr hmac-sha1 none debug1: sending SSH2_MSG_KEX_ECDH_INIT debug1: expecting SSH2_MSG_KEX_ECDH_REPLY debug1: Server host key: ECDSA 3a:49:46:72:a2:3b:60:9d:84:86:9c:ec:d4:01:77:90 debug1: Host '10.221.129.10' is known and matches the ECDSA host key. debug1: Found key in /u/ibm08/.ssh/known_hosts:1 debug1: ssh_ecdsa_verify: signature correct debug1: cipher_init: aes128-ctr from source OpenSSL debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: cipher_init: aes128-ctr from source OpenSSL debug1: SSH2_MSG_NEWKEYS received debug1: SSH2_MSG_SERVICE_REQUEST sent debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: Authentications that can continue: publickey,password,keyboard-interacti debug1: Next authentication method: publickey debug1: Trying private key: /u/ibm08/.ssh/id_rsa debug1: Offering DSA public key: /u/ibm08/.ssh/id_dsa debug1: Authentications that can continue: publickey,password,keyboard-interacti debug1: Trying private key: /u/ibm08/.ssh/id_ecdsa debug1: No more authentication methods to try. FOTS1373 Permission denied (publickey,password,keyboard-interactive). debug1: zsshSmfSetConnSmfStatus: SMF status is 0 FOTS0841 Connection closed So, I think even now connection to the target host is not getting established. Do we have any more direction into this issue. On Dec 7, 2016 11:39, "Jack J. Woehr" <[email protected]> wrote: > venkat kulkarni wrote: > > To provide you move detail, I earlier copied id_dsa.pub key from mainframe >> to target host authorized_keys file. >> >> So, in place of id_dsa.pub key, will it make difference, if we copy id_dsa >> key to target host. >> > > No, that wouldn't help. The public key is what is needed in the remote > server's authorized_keys file. > > your .ssh directory : 700 > your id_dsa : 600 > your id_dsa.pub: 644 > remote server .ssh directory : 700 > remote server authorized_keys : 600 > > If key negotiation does indeed work, you will need to remove the " -b -" > and also the sending of the password. > > You should try the command line which is embedded in the JCL from inside > USS itself without the JCL. > > All that the JCL is doing is sending USS a command line. > > Try it interactively in USS if you have not already done so. Make a shell > file in USS that says something like > > # myxfer.sh > cat << END password > cd /tmp > ascii > put /tmp/SOME.FILE.NAME some.file.name > END | sftp -v -b - [email protected] > > and see if you can execute that successfully right in USS, using the > 'bash' command if you have it, e.g., > > bash ./myxfer.sh > > It's 01:40 here in Colorado ... I'm going to bed. Good-night and good > luck, Venkat! > > Jack > > > > -- > Jack J. Woehr # Science is more than a body of knowledge. It's a way of > www.well.com/~jax # thinking, a way of skeptically interrogating the > universe > www.softwoehr.com # with a fine understanding of human fallibility. - > Carl Sagan > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
