Professional Documents
Culture Documents
VPLEX - Management Server Fails to Log Into Directors With Error - - Permission Denied (Publickey,Keyboard-Interactive) - - - Dell 中国
VPLEX - Management Server Fails to Log Into Directors With Error - - Permission Denied (Publickey,Keyboard-Interactive) - - - Dell 中国
VPLEX - Management Server Fails to Log Into Directors With Error - - Permission Denied (Publickey,Keyboard-Interactive) - - - Dell 中国
" | Dell 中国
客户视图
VPLEX: Management server fails to log into directors with error: "Permission denied (publickey,keyboard-
interactive)."
文章编号: 333764
版本: 2
文章类型: Break Fix
上次发布时间: 20 Feb 2016
摘要: How to check and compare private and public SSH keys in both management servers. If these are different, SSH access to directors from one management server
works whilst it's always denied after three password attempts from the other.
问题 SSH to directors from management server is possible and password is prompted, but it always denies access from one cluster after
three (3) attempts, even though it works with the same password from the remote cluster.
原因 SSH public and/or private keys have been manually modified on one management server which changed public and private SSH keys
compared to the remote management server.
解决方案 SSH public and private keys are stored in /home/service/.ssh folder at both management servers:
service@ManagementServer-1:~/.ssh> ll
total 212
-rw-r----- 1 service users 396 Dec 31 2013 authorized_keys
-rw-r--r-- 1 service users 175 Mar 17 2014 config
-rw-r--r-- 1 service users 88 Mar 17 2014 config.bak
-rw------- 1 service users 1192 Feb 1 2010 id_dsa <-- Private key file
-rw-r--r-- 1 service users 1126 Feb 1 2010 id_dsa.pub <-- Public key file
-rw------- 1 service users 1679 Sep 17 2012 id_rsa
-rw-r--r-- 1 service users 405 Sep 17 2012 id_rsa.pub
-rw-r--r-- 1 service users 187300 Dec 16 14:34 known_hosts
Get the same files from the remote management server, where SSH to directors is working, to compare for differences (backup first):
1. Make a backup of cluster-1 management server files. In this case, this is the cluster getting SSH access to directors denied:
2. Log into cluster-2 management server and back up its private and public SSH keys. In this case, this is the cluster where SSH to
director is working:
3. Copy both private and public SSH keys from the management server where SSH to directors is possible to the remote cluster
management server where access is denied. As these files have the same name in both clusters, make sure to rename them
while/before copying them over:
service@ManagementServer-2:~/.ssh> scp
id_dsa.pub service@128.221.252.33:/home/service/.ssh/id_dsa_c2.pub
Password:
id_dsa.pub 100% 1126 1.1KB/s 00:00
4. Back in cluster-1 management server, confirm you have all the four files (private and public SSH keys from both clusters):
service@ManagementServer-1:~/.ssh> ll
total 228
-rw-r----- 1 service users 396 Dec 31 2013 authorized_keys
-rw-r--r-- 1 service users 175 Mar 17 2014 config
-rw-r--r-- 1 service users 88 Mar 17 2014 config.bak
-rw------- 1 service users 1192 Feb 1 2010 id_dsa
-rw------- 1 service users 1192 Apr 3 14:30 id_dsa.bak
-rw------- 1 service users 1192 Apr 3 14:40 id_dsa_c2
-rw-r----- 1 service users 1126 Apr 3 14:41 id_dsa_c2.pub
-rw-r--r-- 1 service users 1126 Feb 1 2010 id_dsa.pub
-rw-r----- 1 service users 1126 Apr 3 14:31 id_dsa.pub.bak
-rw------- 1 service users 1679 Sep 17 2012 id_rsa
-rw-r--r-- 1 service users 405 Sep 17 2012 id_rsa.pub
-rw-r--r-- 1 service users 187300 Dec 16 14:34 known_hosts
Once you have the four files together, compare the private key from cluster-1 against private key from cluster-2 diff command:
If you see no output after running this command, the file is OK and doesn't need to be replaced.
https://www.dell.com/support/kbdoc/zh-cn/print/333764/30 2/4
2020/9/28 VPLEX: Management server fails to log into directors with error: "Permission denied (publickey,keyboard-interactive)." | Dell 中国
To solve the issue, replace the id_dsa file from the cluster where SSH access to directors is denied with the one from
the management server where SSH is working (in this example, replacing cluster-1 with cluster-2):
1. Remove the invalid private key file (in this example cluster-1's):
service@ManagementServer-1:~/.ssh> rm id_dsa
2. Rename the correct private key file copy from remote cluster (in this example cluster-2's):
To solve the issue, replace the id_dsa.pub file from the cluster where SSH access to directors is denied with the one
from the management server where SSH is working (in this example, replacing cluster-1 with cluster-2):
1. Remove the invalid public key file (in this example cluster-1's):
https://www.dell.com/support/kbdoc/zh-cn/print/333764/30 3/4
2020/9/28 VPLEX: Management server fails to log into directors with error: "Permission denied (publickey,keyboard-interactive)." | Dell 中国
service@ManagementServer-1:~/.ssh> rm id_dsa.pub
2. Rename the correct public key file copy from remote cluster (in this example cluster-2's):
备注 Please refer to CQ 35230 for further details. CQ access is restricted to authorized customer service representatives.
附件
文章属性
主要产品
产品 VPLEX Series, VPLEX VS2, VPLEX Metro, VPLEX Geo, VPLEX GeoSynchrony 5.2 Service Pack 1 Patch 1, VPLEX VS1, VPLEX
GeoSynchrony 5.2 Service Pack 1
https://www.dell.com/support/kbdoc/zh-cn/print/333764/30 4/4