Mail Archives: cygwin/2004/02/23/14:34:47
On Mon, 23 Feb 2004, Richard Duran wrote:
> We are running an "automounter" service as a DomainAdmin (because
> LocalSystem doesn't have access to networked items). When we ssh into
> the box we can see all the network drives under "/cygdrive". However,
> when we set up ssh-passthru to that root AT linuxserver can connect to
> DomainAdminUser AT cygwinserver without need to authenticate. Then upon
> logging in, only the local drives are visible to the user. Removing the
> entry in $HOME/.ssh/authorized_keys fixes the issue, but we need to be
> able to have passthru access. We tried having sshd run as the same
> DomainUser, but then only passthru works. When a password is requested,
> a permission denied error is returned even though the correct password
> is entered.
>
> Any suggestions?
> -richard
Richard,
IIRC, this is an inherent limitation of passwordless authentication on
Windows -- the token created with passwordless authentication will not be
accepted (trusted) on the network server. There really isn't a good
solution to this, other than, perhaps, running two ssh daemons -- one as
LocalSystem for regular ssh access, and one as DomainAdmin (on a different
port) for passthru.
Igor
--
http://cs.nyu.edu/~pechtcha/
|\ _,,,---,,_ pechtcha AT cs DOT nyu DOT edu
ZZZzz /,`.-'`' -. ;-;;,_ igor AT watson DOT ibm DOT com
|,4- ) )-,_. ,\ ( `'-' Igor Pechtchanski, Ph.D.
'---''(_/--' `-'\_) fL a.k.a JaguaR-R-R-r-r-r-.-.-. Meow!
"I have since come to realize that being between your mentor and his route
to the bathroom is a major career booster." -- Patrick Naughton
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
- Raw text -