Mail Archives: cygwin/2006/02/22/12:54:31

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2006/02/22/12:54:31

X-Spam-Check-By: sourceware.org

content-class: urn:content-classes:message

MIME-Version: 1.0

Subject: Unable ssh login using Windows Domain account using password autheationntic

Date: Wed, 22 Feb 2006 12:51:51 -0500

Message-ID: <E400628E9D6760429593FBE7A5AAD27801FA506F@NAEAPAXREX04VA.nadsusea.nads.navy.mil>

From: "Perdue, Dave T. CIV NAVAIR 5.4.3, Bldg 2035, Rm 205, Cube 200" <david DOT perdue AT navy DOT mil>

To: <cygwin AT cygwin DOT com>

X-IsSubscribed: yes

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sourceware.org/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

X-MIME-Autoconverted: from quoted-printable to 8bit by delorie.com id k1MHsQND028060

We are currently using Cygwin 1.5.12-1 on our Windows 2000 Domain as the ssh server for our PCs.  1.5.12-1 ssh allows us to log into the domain PCs remotely using our domain accounts.  I installed Cygwin 1.5.19-4 on one system and find that when I remotely log in using a domain account the native Windows "whoami" command reports my identity as "NT AUTHORITY\SYSTEM".  When I remotely ssh log in on the same system using a local account I see the correct identity.  All logins are using manually entered passwords.  I used the following commands to create the passwd and group files:

mkpasswd -l > /etc/passwd
mkpasswd -d  >> /etc/passwd
mkgroup -l > /etc/group
mkgroup -d >> /etc/group

I configured ssh to use the sshd privilege separation account and specified "ntsec binmode tty".  The sshd server is configured to logon as the local system account.  What changes do I need to make to allow 1.5.19-4 to support logons using our domain account like 1.5.12-1 can?  Thanks in advance for any help that you can provide.

Also, I have noticed that an "id -G" in 1.5.12-1 produces the same output when logged in locally and thru an ssh session, while in 1.5.19-4 it produces different output for the two types of logon.

David Perdue


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

X-Spam-Check-By:	sourceware.org
content-class:	urn:content-classes:message
MIME-Version:	1.0
Subject:	Unable ssh login using Windows Domain account using password autheationntic
Date:	Wed, 22 Feb 2006 12:51:51 -0500
Message-ID:	<E400628E9D6760429593FBE7A5AAD27801FA506F@NAEAPAXREX04VA.nadsusea.nads.navy.mil>
From:	"Perdue, Dave T. CIV NAVAIR 5.4.3, Bldg 2035, Rm 205, Cube 200" <david DOT perdue AT navy DOT mil>
To:	<cygwin AT cygwin DOT com>
X-IsSubscribed:	yes
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
X-MIME-Autoconverted:	from quoted-printable to 8bit by delorie.com id k1MHsQND028060