1. 首頁
  2. 問答
  3. SSH:權限被拒絕(公鑰,鍵盤交互)

SSH:權限被拒絕(公鑰,鍵盤交互)

2013-03-06 74 views
0

我使用的是Linux系統 我創建了本地目錄中的SSH密鑰 $的ssh - 凱基-t RSA -f的〜/ .ssh/id_rsaSSH:權限被拒絕(公鑰,鍵盤交互)

和然後上傳公鑰到PlanetLab的系統

然後我試圖登錄使用了PlanetLab節點:SSH -v
調試信息如下:

OpenSSH_5.8p2, OpenSSL 1.0.0j-fips 10 May 2012 
    debug1: Reading configuration data /etc/ssh/ssh_config 
    debug1: Applying options for * 
    debug1: Connecting to openlab01.pl.sophia.inria.fr [138.96.116.22] port 22. 
    debug1: Connection established. 
    debug1: identity file /user/wgong/home/.ssh/id_rsa type 1 
    debug1: identity file /user/wgong/home/.ssh/id_rsa-cert type -1 
    debug1: identity file /user/wgong/home/.ssh/id_dsa type -1 
    debug1: identity file /user/wgong/home/.ssh/id_dsa-cert type -1 
    debug1: Remote protocol version 2.0, remote software version OpenSSH_5.5 
    debug1: match: OpenSSH_5.5 pat OpenSSH* 
    debug1: Enabling compatibility mode for protocol 2.0 
    debug1: Local version string SSH-2.0-OpenSSH_5.8 
    debug1: SSH2_MSG_KEXINIT sent 
    debug1: SSH2_MSG_KEXINIT received 
    debug1: kex: server->client aes128-ctr hmac-md5 none 
    debug1: kex: client->server aes128-ctr hmac-md5 none 
    debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent 
    debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP 
    debug1: SSH2_MSG_KEX_DH_GEX_INIT sent 
    debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY 
    debug1: Server host key: RSA 3b:a4:2a:ec:89:d0:7b:d7:b2:08:fe:ca:0d:24:ae:20 
    debug1: Host 'openlab01.pl.sophia.inria.fr' is known and matches the RSA host key. 
    debug1: Found key in /user/wgong/home/.ssh/known_hosts:10 
    debug1: ssh_rsa_verify: signature correct 
    debug1: SSH2_MSG_NEWKEYS sent 
    debug1: expecting SSH2_MSG_NEWKEYS 
    debug1: SSH2_MSG_NEWKEYS received 
    debug1: Roaming not allowed by server 
    debug1: SSH2_MSG_SERVICE_REQUEST sent 
    debug1: SSH2_MSG_SERVICE_ACCEPT received 
    debug1: Authentications that can continue: publickey,keyboard-interactive 
    debug1: Next authentication method: publickey 
    debug1: Offering RSA public key: /user/wgong/home/.ssh/id_rsa 
    debug1: Authentications that can continue: publickey,keyboard-interactive 
    debug1: Trying private key: /user/wgong/home/.ssh/id_dsa 
    debug1: Next authentication method: keyboard-interactive 
    debug1: Authentications that can continue: publickey,keyboard-interactive 
    debug1: No more authentication methods to try. 
    Permission denied (publickey,keyboard-interactive).

如何處理這個問題呢?謝謝!

我注意到一個問題,以前,我們集團蒂卡 現在改爲然而uslin ,即使我刪除了以前的密鑰,並使用 SSH-凱基生成新的密鑰,該集團仍然如下:

-rw------- 1 wgong tika 1766 Mar 6 19:06 id_rsa 
-rw-r--r-- 1 wgong tika 394 Mar 6 19:06 id_rsa.pub 
-rw-r--r-- 1 wgong uslin 3987 Mar 6 18:11 known_hosts

是這個問題? 如何解決它? 謝謝!

來源

2013-03-06 user1944267

回答

3

確保服務器上的~/.ssh/authorized_keys文件包含publik密鑰。此外,檢查該文件的權限 - 如果權限過於寬鬆,您將無法登錄:

chmod 600 ~/.ssh/authorized_keys 
chmod 700 ~/.ssh/ 
chmod 700 ~

是的,即使你的home目錄的權限,可以與鍵無法登錄。

來源

2013-03-06 18:00:01

+0

最近,我們的組名已經從tika變成了uslin,奇怪的是當我使用ssh-keygen -t rsa -f〜/ .ssh/id_rsa創建rsa鍵時,創建的鍵仍然是以前的組名,我不能使用chgrp來修改它。這是問題嗎? – user1944267 2013-03-06 18:08:30

+0

@ user1944267對於大多數情況下,只有組的身份證號碼,而不是其名稱。當然你需要成爲'〜/ .ssh'目錄的所有者,但原始的'id_rsa'和'id_rsa.pub'文件應該不是真的很重要(你需要將你的公鑰拷貝到'〜/ .ssh /無論如何都是服務器上的authorized_keys',所以這就是文件的訪問權限)。 – 2013-03-06 21:46:32

相關問題

 相關問題