Hi Mark,
Ok, I just re-compiled openssh_2.3.0p1 with the following option:
./configure --with-clientsecurid --with-serversecurid=/opt/securid
--with-tcp-wrappers
There is the file in the directory /opt/securid:
sdacmvls.h
sdconf.h
sdi_athd.h
sdi_defs.h
sdi_size.h
sdi_type.h
sdiclient.a
And this is my input when I try to login:
ssh2 -v dcocmn
debug: hostname is 'dcocmn'.
debug: Unable to open //.ssh2/ssh2_config
debug: connecting to dcocmn...
debug: ssh_client_wrap: creating transport protocol
debug:
SshAuthMethodClient/sshauthmethodc.c:117/ssh_client_authentication_initialize:
Added "[EMAIL PROTECTED]" to usable methods.
debug: Ssh2Client/sshclient.c:1142/ssh_client_wrap: creating userauth protocol
debug: Ssh2Common/sshcommon.c:502/ssh_common_wrap: local ip = 10.10.10.10, local
port = 32949
debug: Ssh2Common/sshcommon.c:504/ssh_common_wrap: remote ip = 10.10.10.10,
remote port = 22
debug: SshConnection/sshconn.c:1866/ssh_conn_wrap: Wrapping...
debug: entering event loop
debug: Ssh2Transport/trcommon.c:599/ssh_tr_input_version: Remote version:
SSH-1.99-OpenSSH_2.3.0p1
debug: Ssh2Transport/trcommon.c:789/ssh_tr_input_version: Remote version has
rekey incompatibility bug.
debug: Ssh2Transport/trcommon.c:1120/ssh_tr_negotiate: c_to_s: cipher 3des-cbc,
mac hmac-sha1, compression none
debug: Ssh2Transport/trcommon.c:1123/ssh_tr_negotiate: s_to_c: cipher 3des-cbc,
mac hmac-sha1, compression none
debug: Ssh2Client/sshclient.c:406/keycheck_key_match: Host key found from
database.
debug: Ssh2Common/sshcommon.c:306/ssh_common_special: Received SSH_CROSS_STARTUP
packet from connection protocol.
debug: Ssh2Common/sshcommon.c:356/ssh_common_special: Received
SSH_CROSS_ALGORITHMS packet from connection protocol.
debug: Ssh2Common/sshcommon.c:137/ssh_common_disconnect: DISCONNECT received: No
further authentication methods available.
warning: Authentication failed.
debug: Ssh2/ssh2.c:85/client_disconnect: locally_generated = TRUE
Disconnected; no more authentication methods available (No further
authentication methods available.).
debug: uninitializing event loop
#
Do you have any ideal?
Thank's for your help.
- dan
Mark Radleigh wrote:
> You have to configure the server you want to run SSHD on to be an ACE
> client. Then you run configure with at least the following options:
>
> ./configure --with-clientsecurid --with-serversecurid=<location of ACE
> libraries>
>
> The '-clientsecurid' option only compiles in the code to enable an ssh
> client to connect to an ssh daemon with SecurID support compiled in (via the
> '-with-serversecurid' option).
>
> --
> Mark Radleigh
> [EMAIL PROTECTED]
>
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of VOYER,
> DANIEL
> Sent: Tuesday, February 06, 2001 3:44 AM
> To: ssh
> Subject: SSH2 and SecurID
>
> Hi everybody,
>
> I have a Solaris server (sparc 7) and I try to install ssh2 on it. The
> ace server (SecurID server ) is on a different server somewhere in my
> network.
>
> I just compile ssh 2.4.0 with the option "--with-clientsecurid" after I
> put the line
> "AllowedAuthentications [EMAIL PROTECTED] " in the sshd2_config and
> ssh2_config.
>
> Is that all I have to do ?
>
> Because it doesnt work!!
>
> Thank's for your help.
>
> - dan
