Sorry. That previous message got mangled. > $ ssh-add -l > The agent has no identities.
On the server it looks like it says the client is asking for 'keyboard-interactive' first of all things: > debug1: userauth-request for user fred service ssh-connection method > none [preauth] > debug1: attempt 0 failures 0 [preauth] > debug1: userauth-request for user fred service ssh-connection method > keyboard-interactive [preauth] > debug1: attempt 1 failures 0 [preauth] > debug1: keyboard-interactive devs [preauth] > debug1: auth2_challenge: user=fred devs= [preauth] > debug1: kbdint_alloc: devices 'bsdauth' [preauth] > debug1: auth2_challenge_start: trying authentication method 'bsdauth' > [preauth] > debug1: userauth-request for user fred service ssh-connection method > password [preauth] > debug1: attempt 2 failures 1 [preauth] > Failed password for fred from 192.0.2.246 port 57386 ssh2 > debug1: userauth-request for user fred service ssh-connection method > password [preauth] > > >> [...] >>> Is there any way to get the full number of MaxAuthTries log in attempts? >> >> Assuming my guess above is correct, PreferredAuthentications=password Yes, thanks, PreferredAuthentications=password does answer the question. Looking at the -vvv output from the SSH client, it also looks like it was because of the keyboard-interactive: ... debug3: preferred gssapi-keyex,gssapi-with-mic,publickey,keyboard-interactive,password debug3: authmethod_lookup publickey debug3: remaining preferred: keyboard-interactive,password debug3: authmethod_is_enabled publickey debug1: Next authentication method: publickey debug1: Trying private key: /home/fred/.ssh/id_rsa debug3: no such identity: /home/fred/.ssh/id_rsa: No such file or directory debug1: Trying private key: /home/fred/.ssh/id_dsa debug3: no such identity: /home/fred/.ssh/id_dsa: No such file or directory debug1: Trying private key: /home/fred/.ssh/id_ecdsa debug3: no such identity: /home/fred/.ssh/id_ecdsa: No such file or directory debug1: Trying private key: /home/fred/.ssh/id_ed25519 debug3: no such identity: /home/fred/.ssh/id_ed25519: No such file or directory debug2: we did not send a packet, disable method debug3: authmethod_lookup keyboard-interactive debug3: remaining preferred: password debug3: authmethod_is_enabled keyboard-interactive debug1: Next authentication method: keyboard-interactive debug2: userauth_kbdint debug2: we sent a keyboard-interactive packet, wait for reply debug1: Authentications that can continue: publickey,password,keyboard-interactive debug3: userauth_kbdint: disable: no info_req_seen debug2: we did not send a packet, disable method debug3: authmethod_lookup password debug3: remaining preferred: debug3: authmethod_is_enabled password debug1: Next authentication method: password ... So, yes, that does allow the maximum number of log-ins. Thanks. Regards, Lars
