Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: SSH, SFTP, and NTSEC Date: Mon, 27 Dec 2004 15:17:19 -0800 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: From: "Bryan Love" To: X-IsSubscribed: yes Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by delorie.com id iBRNFQt5023410 I've researched this topic online for days and it seems like every one has their own solution or their own idea about how user authentication works in Cygwin. What I CAN'T seem to find is a simple description of exactly what happens when a user tries to log in via SSH. What is the flow of Cygwin's authentication process? I assume it checks /etc/passwd and /etc/group, then somehow validates against Windows passwords. But how?? Does it check passwd or group first? Does the user have to have a group? How does Cygwin compare groups in the group file to groups in Windows? My problem is simple... I have users that I created that cannot log in via SSH unless I make them members of the Windows ADMINISTRATORS group on the Windows 2003 server that is running Cygwin. I've tried everything I can think of and lots of stuff from other people that I could never have thought up myself. Can anyone explain in detail the steps Cygwin goes through to authenticate a user via SSH? -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/