| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| X-SWARE-Spam-Status: | No, hits=-2.0 required=5.0 tests=AWL,BAYES_50,KHOP_THREADED,RP_MATCHES_RCVD,SPF_HELO_PASS |
| X-Spam-Check-By: | sourceware.org |
| To: | cygwin AT cygwin DOT com |
| From: | Andrew DeFaria <Andrew AT DeFaria DOT com> |
| Subject: | Re: Passwordless authentication between two domains. |
| Date: | Tue, 20 Nov 2012 10:16:12 -0800 |
| Lines: | 36 |
| Message-ID: | <k8ghdb$kps$1@ger.gmane.org> |
| References: | <1353433612060-94427 DOT post AT n5 DOT nabble DOT com> |
| Mime-Version: | 1.0 |
| User-Agent: | Mozilla/5.0 (Windows NT 6.1; rv:16.0) Gecko/20121026 Thunderbird/16.0.2 |
| In-Reply-To: | <1353433612060-94427.post@n5.nabble.com> |
| X-IsSubscribed: | yes |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Unsubscribe: | <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
On 11/20/2012 9:46 AM, anulav2 wrote: > Hello, > > I am unable to use passwordless authentication between two 2008 windows > servers in two different domains. > Account name is same in both domains. > I can authenticate using password but not otherwise. > I have setup RSA keys and authorized_keys file. Permissons on .ssh are 700 > and .ssh/authorized_keys are 600. > I have tried uninstall and re-install twice. > and following is part of what i get when i increase verbosity. Is your home directory, oddly named /home/pal.rsync, set to 755? How about ~/.ssh? Also 755. No. 700. That may be the problem. My ~/.ssh/authorized_keys is set to 644. My ~/.ssh/id_rsa is 600 but ~/.ssh/id_rsa.pub is 644. But I don't use any RSA anymore, I use DSA instead. I believe it is more secure. Additionally is ~/.ssh/id_rsa.pub the same on both machines? (Does diff return no differences?). I believe, since these are two different domains, that the generated keys will not be the same. If they are the same then regenerate them on both machines and compare them again. Also, ~/.ssh/id_rsa.pub from Domain A should be added to the ~/.ssh/authorized_keys on Domain B and visa versa from Domain B -> Domain A. Finally make sure that the key is contained in one long line. Often, depending on the user's editor and it's setting, when you paste into the editor the editor may insert new lines. These are the usual problems I see when people are attempting to set up passwordless authentication with ssh. -- Andrew DeFaria <http://defaria.com> I went to a general store, but they wouldn't let me buy anything specific. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |