On Nov 1, 2010, at 18:17 , Stephan Wiesand wrote: > > On Nov 1, 2010, at 18:02 , Don Hoover wrote: > >> Ok..for some reason I have not having any luck using a ssh key to ssh as >> root from a RHEL5 box to a RHEL6 system. >> >> Is there any gotchas? > > This is working fine here, but IIRC (set this up many months ago...) it > needed some tweaking. Try > > chmod 0600 /root/.ssh/authorized_keys2 > > and, if SELinux is active, > > restorecon -r /root/.ssh
Sorry, forgot one step... here's what I do in %post during kickstart installs,
and that makes it work for us:
mkdir -p -m 0700 /root/.ssh
cat > /root/.ssh/authorized_keys2<<EOF
ssh-dss [...]
EOF
chmod 0600 /root/.ssh/authorized_keys2
restorecon -r /root/.ssh
Regards,
Stephan
>
> It may not help, but it won't hurt.
>
> Regards,
> Stephan
>
>
>>
>> I even generated a new ssh key on the RHEL6 box, copied the id_rsa file to
>> the RHEL5 box, and added the public to the RHEL6 authorized_keys file and
>> still the RHEL6 box will not allow the key.
>>
>> debug2: input_userauth_request: try method publickey
>> debug1: temporarily_use_uid: 0/0 (e=0/0)
>> debug1: trying public key file /root/.ssh/authorized_keys
>> debug1: restore_uid: 0/0
>> debug1: temporarily_use_uid: 0/0 (e=0/0)
>> debug1: trying public key file /root/.ssh/authorized_keys2
>> debug1: restore_uid: 0/0
>> Failed publickey for root from 10.240.44.50 port 30803 ssh2
>> debug2: userauth_pubkey: authenticated 0 pkalg ssh-rsa
>> debug1: userauth-request for user root service ssh-connection method
>> keyboard-interactive
>> debug1: attempt 2 failures 1
>
> --
> Stephan Wiesand
> DESY -DV-
> Platanenenallee 6
> 15738 Zeuthen, Germany
>
--
Stephan Wiesand
DESY -DV-
Platanenenallee 6
15738 Zeuthen, Germany
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ rhelv6-beta-list mailing list rhelv6-beta-list@redhat.com https://www.redhat.com/mailman/listinfo/rhelv6-beta-list
