Try using eccentric to display information about your user before and after you did password login. When using public key, there is no way to verify your user. I suspect, logging in using password caches login information for later use.
Using GSS-API with Kerberos may provide a solution if filer supports it.
Отправлено с iPhone
21.01.2013, в 20:00, "STO DC Storage" <xdl-communities@communities.netapp.com<mailto:xdl-communities@communities.netapp.com>> написал(а):
<https://communities.netapp.com/index.jspa>
Re: ssh as a domainuser to filer / rsa pubkey in cygwin
created by STO DC Storage<https://communities.netapp.com/people/sto.dc.storage> in Data ONTAP - View the full discussion<https://communities.netapp.com/message/98679#98679>
I'am running against the same problem every day.
I add my ssh-key in pageant and try a 'ssh filer date' and it states:
: User 'win\user' denied access - missing required capability: 'cli-date'
Now I remove my ssh key from pageant and run the same command again and it asks for my password (which I expect it to do). It grants me access and executes the command 'date'.
Somewhere on the road it now can identify me as 'win\user' and sees that I'am allowed to execute the command.
I then add my ssh-key again in pageant. Execute the command again and voila, the command works.
I have to do above sequence every day, for some reason the filer resets my credentials every day.
I have several filers to manage, but only one gives me this behaviour. I searched through all options and files but I can't see any difference.
Do you have any clue?
Reply to this message by replying to this email -or- go to the message on NetApp Community<https://communities.netapp.com/message/98679#98679>
Start a new discussion in Data ONTAP by email<mailto:discussions-community-products_and_solutions-data_ontap@communities.netapp.com> or at NetApp Community<https://communities.netapp.com/choose-container.jspa?contentType=1&containerType=14&container=2877>