Re: [zones-discuss] ssh on zones
If you use the Zone Manager, you can automate the zone creation, zone configuration, networking and sshd configuration to enable root (not recommending that) access over ssh in one CLI. For example: # zonemgr -a add -n MyHost -z /zones -P pw \ -C /etc/resolv.conf -C /etc/ssh/sshd_config \ -C "/etc/nsswitch.dns|/etc/nsswitch.conf" \ -s ssh -I "192.168.0.100|bfe0|24|myhost" In this example, the Zone Manager does the following * creates a zone called MyHost, * puts the zone in /zones/MyHost, * installs and configures the zone, * sets the root user password to pw, * adds an IP address, * configures name resolution within the zone, * copies a root login enabled sshd_config file into the zone. * restarts the ssh service to make sure the new sshd configuration gets applied. The Zone Manager (zonemgr) is free and available to download at the following URL: http://opensolaris.org/os/project/zonemgr/ Hope that helps! Brad On Wed, 2008-01-09 at 20:00 +0100, Mads Toftum wrote: > On Wed, Jan 09, 2008 at 03:58:26PM -0200, Thiago Sobral wrote: > > I installed a zone called zone1 and by the global zone I can access it > > by zlogin command, but external access through ssh doesn't work and I > > can't change the users passwords (I receive the `Permission Denied` > > message). > > > You didn't go through configuring the zone. After the first boot, you > need to: zlogin -C and go through the questions there. After > that, the zone reboots and you're ready to change passwords and start > network services like ssh. > > vh > > Mads Toftum -- The Zone Manager http://TheZoneManager.COM http://opensolaris.org/os/project/zonemgr ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] ssh on zones
zlogin into the zone. cd to /var/svc/profile. ln -s ./generic_open.xml /var/svc/profile/generic.xml reboot the zone It should work after that. - - -Paul -Original Message- >From: Thiago Sobral <[EMAIL PROTECTED]> >Sent: Jan 9, 2008 1:57 PM >To: Mangan <[EMAIL PROTECTED]> >Cc: zones-discuss@opensolaris.org >Subject: Re: [zones-discuss] ssh on zones > >Hi Mangan, > >I fixed the sshd daemon copying the /etc/ssh directory structure from my >global zone and regenerating the keys, but now I'm trying to change my >user's password but I got the "Permission Denied" message. > >The line on log file: >* passwd[2335]: [ID 587833 user.error] passwdutil.so: can't get domain > >do you have idea what is this error ? > >TIA. > >Thiago. > >Mangan escreveu: >> If you are trying to login via use of the root user you will have to change >> /etc/ssh/sshd.conf. There is a PermitRootLogin that needs to be changed to >> yes. Otherrwise we need more details. >> >> >> -Original Message- >> >>> From: Thiago Sobral <[EMAIL PROTECTED]> >>> Sent: Jan 9, 2008 12:58 PM >>> To: zones-discuss@opensolaris.org >>> Subject: [zones-discuss] ssh on zones >>> >>> Hi folks, >>> >>> I installed a zone called zone1 and by the global zone I can access it >>> by zlogin command, but external access through ssh doesn't work and I >>> can't change the users passwords (I receive the `Permission Denied` >>> message). >>> >>> Please, do you have a document that I can read to solve this problem ? >>> >>> Thanks, >>> >>> Thiago. >>> >>> >>> >>> >>> ___ >>> zones-discuss mailing list >>> zones-discuss@opensolaris.org >>> >> >> >> > ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] ssh on zones
On Wed, Jan 09, 2008 at 03:58:26PM -0200, Thiago Sobral wrote: > I installed a zone called zone1 and by the global zone I can access it > by zlogin command, but external access through ssh doesn't work and I > can't change the users passwords (I receive the `Permission Denied` > message). > You didn't go through configuring the zone. After the first boot, you need to: zlogin -C and go through the questions there. After that, the zone reboots and you're ready to change passwords and start network services like ssh. vh Mads Toftum -- http://soulfood.dk ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] ssh on zones
Hi Mangan, I fixed the sshd daemon copying the /etc/ssh directory structure from my global zone and regenerating the keys, but now I'm trying to change my user's password but I got the "Permission Denied" message. The line on log file: * passwd[2335]: [ID 587833 user.error] passwdutil.so: can't get domain do you have idea what is this error ? TIA. Thiago. Mangan escreveu: > If you are trying to login via use of the root user you will have to change > /etc/ssh/sshd.conf. There is a PermitRootLogin that needs to be changed to > yes. Otherrwise we need more details. > > > -Original Message- > >> From: Thiago Sobral <[EMAIL PROTECTED]> >> Sent: Jan 9, 2008 12:58 PM >> To: zones-discuss@opensolaris.org >> Subject: [zones-discuss] ssh on zones >> >> Hi folks, >> >> I installed a zone called zone1 and by the global zone I can access it >> by zlogin command, but external access through ssh doesn't work and I >> can't change the users passwords (I receive the `Permission Denied` >> message). >> >> Please, do you have a document that I can read to solve this problem ? >> >> Thanks, >> >> Thiago. >> >> >> >> >> ___ >> zones-discuss mailing list >> zones-discuss@opensolaris.org >> > > > ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] ssh on zones
If you are trying to login via use of the root user you will have to change /etc/ssh/sshd.conf. There is a PermitRootLogin that needs to be changed to yes. Otherrwise we need more details. -Original Message- >From: Thiago Sobral <[EMAIL PROTECTED]> >Sent: Jan 9, 2008 12:58 PM >To: zones-discuss@opensolaris.org >Subject: [zones-discuss] ssh on zones > >Hi folks, > >I installed a zone called zone1 and by the global zone I can access it >by zlogin command, but external access through ssh doesn't work and I >can't change the users passwords (I receive the `Permission Denied` >message). > >Please, do you have a document that I can read to solve this problem ? > >Thanks, > >Thiago. > > > > >___ >zones-discuss mailing list >zones-discuss@opensolaris.org ___ zones-discuss mailing list zones-discuss@opensolaris.org
