Hi.
I used to log the ssh keys (DSA) - worked perfectly.
I changed admin password and log the keys stopped working.
Generated and cast new keys - without result -
MT says that login or password is not correct.
Any hints?
I believe that SSH-keys login should be without a password.
I do not have a password.
I have about 30 box with MT, from version 2.9.26 to 3.15, mainly PC,
and 5xRB433 - the problem is, in any of them.
Here is typescript of terminal session:
Script started on Mon Nov 3 18:18:32 2008
[1] [18:18] [cisco@noc]:~/.ssh>ll
total 36
drwxr-xr-x 2 cisco cisco - 512B 3 lis 18:18 ./
drwxr-xr-x 11 cisco cisco - 512B 1 lis 09:35 ../
-rw------- 1 cisco cisco - 289B 3 lis 18:08 config
-rw------- 1 cisco cisco - 27K 31 paź 20:37 known_hosts
-rw-r--r-- 1 cisco cisco - 43B 3 lis 18:18 typescript
[2] [18:18] [cisco@noc]:~/.ssh>cat config
Host *
ForwardAgent no
ForwardX11 no
RhostsRSAAuthentication no
RSAAuthentication yes
PasswordAuthentication yes
HostbasedAuthentication no
BatchMode no
CheckHostIP no
AddressFamily any
ConnectTimeout 0
StrictHostKeyChecking ask
Port 1022
Protocol 2
User admin
[3] [18:18] [cisco@noc]:~/.ssh>ssh-keygen -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (/home/cisco/.ssh/id_dsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/cisco/.ssh/id_dsa.
Your public key has been saved in /home/cisco/.ssh/id_dsa.pub.
The key fingerprint is:
de:3e:9e:d5:9f:5e:b3:13:fa:61:ea:7c:cb:48:81:80 cisco@noc
[4] [18:18] [cisco@noc]:~/.ssh>lftp
lftp :~> open admin@szopena
Hasło:
lftp admin@szopena:~> ls
lftp admin@szopena:/> put id_dsa.pub
612 bajty przesłanych
lftp admin@szopena:/> exit
[5] [18:19] [cisco@noc]:~/.ssh>ssh szopena
admin@szopena's password:
MMM MMM KKK TTTTTTTTTTT KKK
MMMM MMMM KKK TTTTTTTTTTT KKK
MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK
MikroTik RouterOS 2.9.26 (c) 1999-2006 http://www.mikrotik.com/
Terminal screen detected, using single line input mode
[admin@szopena] > /user ssh-keys
[admin@szopena] user ssh-keys> pr
# USER KEY-OWNER
[admin@szopena] user ssh-keys> import user=admin file=id_dsa.pub
[admin@szopena] user ssh-keys> /quit
Connection to szopena closed.
[6] [18:19] [cisco@noc]:~/.ssh>ssh szopena
Login failed, incorrect username or password
Login: Connection to szopena closed.
[7] [18:19] [cisco@noc]:~/.ssh>exit
Script done on Mon Nov 3 18:19:33 2008
you are trying to send ‘cisco’ as the username most likely. use -l to specify user explicitly, and use -i to specify the .dsa private key.
Sam
in ~/.ssh/config is User admin - before passwd change works great.
-l nothing change.