1. 首页
  2. 问答
  3. SSH:权限被拒绝(公钥,键盘交互)

SSH:权限被拒绝(公钥,键盘交互)

2013-03-06 539 views
0

我使用的是Linux系统 我创建了本地目录中的SSH密钥 $的ssh - 凯基-t RSA -f的〜/ .ssh/id_rsaSSH:权限被拒绝(公钥,键盘交互)

和然后上传公钥到PlanetLab的系统

然后我试图登录使用了PlanetLab节点:SSH -v
调试信息如下:

OpenSSH_5.8p2, OpenSSL 1.0.0j-fips 10 May 2012 
    debug1: Reading configuration data /etc/ssh/ssh_config 
    debug1: Applying options for * 
    debug1: Connecting to openlab01.pl.sophia.inria.fr [138.96.116.22] port 22. 
    debug1: Connection established. 
    debug1: identity file /user/wgong/home/.ssh/id_rsa type 1 
    debug1: identity file /user/wgong/home/.ssh/id_rsa-cert type -1 
    debug1: identity file /user/wgong/home/.ssh/id_dsa type -1 
    debug1: identity file /user/wgong/home/.ssh/id_dsa-cert type -1 
    debug1: Remote protocol version 2.0, remote software version OpenSSH_5.5 
    debug1: match: OpenSSH_5.5 pat OpenSSH* 
    debug1: Enabling compatibility mode for protocol 2.0 
    debug1: Local version string SSH-2.0-OpenSSH_5.8 
    debug1: SSH2_MSG_KEXINIT sent 
    debug1: SSH2_MSG_KEXINIT received 
    debug1: kex: server->client aes128-ctr hmac-md5 none 
    debug1: kex: client->server aes128-ctr hmac-md5 none 
    debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent 
    debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP 
    debug1: SSH2_MSG_KEX_DH_GEX_INIT sent 
    debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY 
    debug1: Server host key: RSA 3b:a4:2a:ec:89:d0:7b:d7:b2:08:fe:ca:0d:24:ae:20 
    debug1: Host 'openlab01.pl.sophia.inria.fr' is known and matches the RSA host key. 
    debug1: Found key in /user/wgong/home/.ssh/known_hosts:10 
    debug1: ssh_rsa_verify: signature correct 
    debug1: SSH2_MSG_NEWKEYS sent 
    debug1: expecting SSH2_MSG_NEWKEYS 
    debug1: SSH2_MSG_NEWKEYS received 
    debug1: Roaming not allowed by server 
    debug1: SSH2_MSG_SERVICE_REQUEST sent 
    debug1: SSH2_MSG_SERVICE_ACCEPT received 
    debug1: Authentications that can continue: publickey,keyboard-interactive 
    debug1: Next authentication method: publickey 
    debug1: Offering RSA public key: /user/wgong/home/.ssh/id_rsa 
    debug1: Authentications that can continue: publickey,keyboard-interactive 
    debug1: Trying private key: /user/wgong/home/.ssh/id_dsa 
    debug1: Next authentication method: keyboard-interactive 
    debug1: Authentications that can continue: publickey,keyboard-interactive 
    debug1: No more authentication methods to try. 
    Permission denied (publickey,keyboard-interactive).

如何处理这个问题呢?谢谢!

我注意到一个问题,以前,我们集团蒂卡 现在改为然而uslin ,即使我删除了以前的密钥,并使用 SSH-凯基生成新的密钥,该集团仍然如下:

-rw------- 1 wgong tika 1766 Mar 6 19:06 id_rsa 
-rw-r--r-- 1 wgong tika 394 Mar 6 19:06 id_rsa.pub 
-rw-r--r-- 1 wgong uslin 3987 Mar 6 18:11 known_hosts

是这个问题? 如何解决它? 谢谢!

来源

2013-03-06 user1944267

回答

3

确保服务器上的~/.ssh/authorized_keys文件包含publik密钥。此外,检查该文件的权限 - 如果权限过于宽松,您将无法登录:

chmod 600 ~/.ssh/authorized_keys 
chmod 700 ~/.ssh/ 
chmod 700 ~

是的,即使你的home目录的权限,可以与键无法登录。

来源

2013-03-06 18:00:01

+0

最近,我们的组名已经从tika变成了uslin,奇怪的是当我使用ssh-keygen -t rsa -f〜/ .ssh/id_rsa创建rsa键时,创建的键仍然是以前的组名,我不能使用chgrp来修改它。这是问题吗? – user1944267 2013-03-06 18:08:30

+0

@ user1944267对于大多数情况下,只有组的身份证号码,而不是其名称。当然你需要成为'〜/ .ssh'目录的所有者,但原始的'id_rsa'和'id_rsa.pub'文件应该不是真的很重要(你需要将你的公钥拷贝到'〜/ .ssh /无论如何都是服务器上的authorized_keys',所以这就是文件的访问权限)。 – 2013-03-06 21:46:32

相关问题

 相关问题