Data ONTAP Discussions

Re: Issues with running pefstats on a unix system.

Okay, i´ve createt /etc/sshd/root/.ssh/authorized_keys and /etc/sshd/root/.ssh/authorized_keys2 directory

ssh-keygen -t dsa -b 1024 and ssh-keygen -t rsa -b 1024   > id_dsa ; id_dsa.pub ; id_rsa ; id_rsa.pub copied into ...keys and keys2 directory.  (note flags can set only to 755)

After that i do that:

secureadmin setup -f ssh

SSH Setup

---------

Determining if SSH Setup has already been done before...yes

You have chosen to re-run SSH Setup. The old host keys will be

backed up to the following files:

        /etc/sshd/ssh_host_key.201109131705

        /etc/sshd/ssh_host_rsa_key.201109131705

        /etc/sshd/ssh_host_dsa_key.201109131705

Do you want to proceed? [no] yes

SSH server supports both ssh1.x and ssh2.0 protocols.

SSH server needs two RSA keys to support ssh1.x protocol. The host key is

generated and saved to file /etc/sshd/ssh_host_key during setup. The server

key is re-generated every hour when SSH server is running.

SSH server needs a RSA host key and a DSA host key to support ssh2.0 protocol.

The host keys are generated and saved to /etc/sshd/ssh_host_rsa_key and

/etc/sshd/ssh_host_dsa_key files respectively during setup.

SSH Setup will now ask you for the sizes of the host and server keys.

For ssh1.0 protocol, key sizes must be between 384 and 2048 bits.

For ssh2.0 protocol, key sizes must be between 768 and 2048 bits.

The size of the host and server keys must differ by at least 128 bits.

Please enter the size of host key for ssh1.x protocol [768] :

Please enter the size of server key for ssh1.x protocol [512] :

Please enter the size of host keys for ssh2.0 protocol [768] :

You have specified these parameters:

        host key size = 768 bits

        server key size = 512 bits

        host key size for ssh2.0 protocol = 768 bits

Is this correct? [yes]

Setup will now generate the host keys. It will take a minute.

After Setup is finished the SSH server will start automatically.

270-sp*> Tue Sep 13 17:05:12 CEST [secureadmin.ssh.setup.success:info]: SSH setup is done and ssh2 should be enabled. Host keys are stored in /etc/sshd/ssh_host_key, /etc/sshd/ssh_host_rsa_key, and /etc/sshd/ssh_host_dsa_key.

When i login the keys where requested from /etc/shhd/root/.ssh ?

That´s my log from the Filer:

Tue Sep 13 16:40:38 CEST [sshd_1:info]: Failed password for 8ung from 10.68.24.192 port 4287ssh2

Tue Sep 13 16:44:25 CEST [sshd_1:info]: Failed publickey for root from 10.68.24.192 port 4315ssh2

Tue Sep 13 16:44:30 CEST [sshd_1:info]: Failed publickey for root from 10.68.24.192 port 4318ssh2

Tue Sep 13 16:44:45 CEST [sshd_1:info]: Failed publickey for root from 10.68.24.192 port 4319ssh2

Tue Sep 13 16:45:06 CEST [sshd_1:info]: Failed publickey for root from 10.68.24.192 port 4325ssh2

Tue Sep 13 16:47:27 CEST [sshd_1:info]: Failed publickey for root from 10.68.24.192 port 4336ssh2

Tue Sep 13 16:47:30 CEST [ems.engine.inputSuppress:warning]: Event 'openssh.invalid.channel.req' suppressed 7 times since Tue Sep 13 16:40:52 CEST 2011.

Tue Sep 13 16:47:30 CEST [openssh.invalid.channel.req:warning]: SSH client (SSH-2.0-OpenSSH_5.8p1 Debian-1ubuntu3) from 10.68.24.192 sent unsupported chann

What can be wrong ? Which failed publickey will be requested in which folder? /etc/sshd or /etc/sshd/root/.ssh/

Re: Issues with running pefstats on a unix system.

Okay, i´ve createt /etc/sshd/root/.ssh/authorized_keys and /etc/sshd/root/.ssh/authorized_keys2 directory 

It is not a directory, it is a file. How to setup public key authentication is described in details in System Administration Guide as well as in couple of KBs.

Re: Issues with running pefstats on a unix system.

Okay, now it´s working ..... ;-)

I have read over your hint that authorized_keys is "not" a directory.

After creating an renaming it to authorized_keys in the /etc/sshd/root/.ssh/ directory, everything is workin well ...

thx and br

Frank

Forums