ssh rsa keys not working or passwordless authentication not working

By -
See It is asking for password

[root@Davinder ~]# ssh  9.109.116.62
The authenticity of host '9.109.116.62 (9.109.116.62)' can't be established.
RSA key fingerprint is 9d:a2:f5:1e:7c:eb:16:bb:ca:b5:0d:fc:fa:56:17:e2.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '9.109.116.62' (RSA) to the list of known hosts.
root@9.109.116.62's password:


check on 9.109.116.62 server

 cat .ssh/authorized_keys
 ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIEAlpKZhORQRSQyf723nBR8PKS0iUGpXWfG261iOd7lKuWpDwlxmFT3bre6tP7ZwFHZOJH8M0iX+B1ZhvV3/7oePPhl+ORUEwmyXPz/RMp1Ruo/YjBJBLY4cGIhlRwLz81dUnaAZzI4RvcPgvPdJqNOmysroWwaPm+JP+hHqNQ7D60=
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAw/8MPiiHAtudCsNEHmeTYxz4oIodsiJUgtSM4NFp8bDoz8WHIBNVhgJRPeVjy9O2A4jfJup/sgx4FLG1ig53lWHCXsMqJUaEjZCIRv+U2bDvqqgCVTzLfCNwaYKLQSsXdq/buts7x++wFvh36wr27aT7vdaRivnWqTmMavENAMUjOU2PzmjcgTHh9tQDyt92Oq5po34oAu1pj/Z5UI301cg72gpXEDDHsjK1UcvdB1VDQlPEInA/wsqZuT8ADdyiizOhtyleG0fwk9QhInMycLsjw47yDjfEOVOwAjiXVG0CgT9TkASWG23JKSV5tXErrfUBG5iT5GvuaSD2DacFqQ== root@xcat

RSA keys are very much right here but still issue to login.

SOLUTION:

selinux is enabled so please disable selinux.

vi /etc/selinux/config


# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#     enforcing - SELinux security policy is enforced.
#     permissive - SELinux prints warnings instead of enforcing.
#     disabled - No SELinux policy is loaded.

SELINUX=enforcing   ----> change to disabled

# SELINUXTYPE= can take one of these two values:
#     targeted - Targeted processes are protected,
#     mls - Multi Level Security protection.
SELINUXTYPE=targeted

[root@localhost ~]# selinuxenabled 0
[root@localhost ~]# setenforce 0
[root@localhost ~]# sestatus
SELinux status:                 enabled
SELinuxfs mount:                /selinux
Current mode:                   permissive
Mode from config file:          disabled
Policy version:                 24
Policy from config file:        targeted

Comments

Post a Comment

Popular posts from this blog

How to delete SEA in VIOS

By -
Remove the network en0 #ifconfig en0 down #ifconfig en0 detach Delete SEA $ lsdev -type sea name             status      description ent27            Defined     Shared Ethernet Adapter $ chdev -dev en26 -attr state=detach en27 changed $ rmdev -dev ent26;rmdev -dev en26;rmdev -dev et26 ent27 deleted $ rmdev -dev en26 en27 deleted $ rmdev -dev et26 et27 deleted system information #prtconf|more rmdev -dev ent3;rmdev -dev en3;rmdev -dev et3
Read more

Webmin configuration for LDAP

By -
We cannot add or delete users by default so we have to do below changes in LDAP module in GUI mode only. Configuring the module The most complex part of using this module is configuring it to talk to your LDAP server. By default, it will attempt to auto-detect the settings by looking at the LDAP client settings on your system, documented on the LDAPClient page. However, if this fails (perhaps because the LDAP server is not one of its own clients), you will need to configure the module manually as follows : On the module's main page, click on the Module Config link. In the LDAP server host field, enter the hostname of your LDAP server. If it is running on the same machine, enter localhost. If the LDAP server is using encryption, change the LDAP server uses TLS? option to Yes. In the Bind to LDAP server as field, enter the full DN of the administrative user for your LDAP server. This might be something like cn=Manager,dc=my-domain,dc=com. In the Credentials for bind name above field,...
Read more

Sample questions and answers for AWS Associate Solutions Architect Certification ---> AWS exam dumps

By -
Sample questions and answers for AWS Associate Solutions Architect Certification I try to give value for this by providing more information than the answer Q.What does Amazon S3 stand for? A.Simple Storage Service. Q:You must assign each server to at least _____ security group A:1  Q:Before I delete an EBS volume, what can I do if I want to recreate the volume later? A:Store a snapshot of the volume  http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-deleting-volume.html Q:Select the most correct answer: The device name /dev/sda1 (within Amazon EC2 ) is _____ A:Reserved for the root device  Q:If I want an instance to have a public IP address, which IP address should I use? A:Elastic IP Address http://aws.amazon.com/articles/1346 Q:What does RRS stand for when talking about S3? A:Reduced Redundancy Storage  http://aws.typepad.com/aws/2010/05/new-amazon-s3-reduced-redundancy-storage-rrs.html Q:All Amazon EC2 instances are assigned two IP addresses at lau...
Read more