CentOS 7. SSH Permission denied. Why no password?

Multi tool use
Multi tool use

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
0
down vote

favorite












I have a frustrating SSH access problem on a new VM with Centos 7 which is driving me crazy!! It seems to be a first-time login problem on the new box.
I know all the basic settings ... this is about the 5th VM I have set up with this OS (So ifcfg.eth0, hostname, network etc is all good).
I can ping the new box as well ... remotely and from it to other boxes in the network. But ...
When I attempt remote SSH access I just keep getting the error:



Permission denied (publickey,gssapi-keyex,gssapi-with-mic)


I have seen this before and know about /etc/ssh/ssh_config ... and we are just talking password authentication here (not ssh key login). But only on this box I am getting it. I started off with just:



host *
GSSAPIAuthentication yes


This is what I used on the other machines and it always worked!
So, I have since tried uncommenting these keys:



#PasswordAuthentication yes


and



#PermitRootLogin yes


Above because I am logging in with root. And ... I also tried commenting out GSSAPIAuthentication. And yes ... I always restart the sshd daemon after making changes to this file (systemctl restart sshd.services)
Also ... I see nothing significant in /var/log/messages or /var/log/secure .. I've tried verbose using the ssh -v switch and what I do notice on this problem box is that shortly before the above "Permission denied" error is output I get this message:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic


Whereas on other boxes which work I always get this:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password


So clearly password authentication is not enabled !
The final straw is this: I get this same error message EVEN WHEN I SSH FROM THIS BOX TO ITSELF! There HAS to be some SSH setting I am missing.
Can someone please advise me what this setting is?






centos sshd







share|improve this question





















  • Hi, and welcome. Did you restart sshd after modifying the configuration file?
    – Andy Dalton
    Aug 23 at 14:18










  • Make sure you are writing those lines (PasswordAuthentication yes and PermitRootLogin yes) in /etc/ssh/sshd_config, and not the ssh_config. I notice you mentioning ssh_config in your question. If you are doing this right, it should work after restarting ssh service.
    – Vinod
    Aug 23 at 14:50










  • Please edit your question to include the contents of your sshd_config file (or at least the relevant parts), instead of describing what's in it and what you changed.
    – Kenster
    Aug 23 at 14:57










  • What is tbe exact command that you are using to log into the Centos 7 machine?
    – Nasir Riley
    Aug 23 at 17:36










  • I am using this: ssh root@centoshost ... at least most of the time. But I have also used the -i switch to indicate path to pubkey. And of course the -v sometimes to get verbose
    – Paul Cartier
    Aug 23 at 18:30















up vote
0
down vote

favorite












I have a frustrating SSH access problem on a new VM with Centos 7 which is driving me crazy!! It seems to be a first-time login problem on the new box.
I know all the basic settings ... this is about the 5th VM I have set up with this OS (So ifcfg.eth0, hostname, network etc is all good).
I can ping the new box as well ... remotely and from it to other boxes in the network. But ...
When I attempt remote SSH access I just keep getting the error:



Permission denied (publickey,gssapi-keyex,gssapi-with-mic)


I have seen this before and know about /etc/ssh/ssh_config ... and we are just talking password authentication here (not ssh key login). But only on this box I am getting it. I started off with just:



host *
GSSAPIAuthentication yes


This is what I used on the other machines and it always worked!
So, I have since tried uncommenting these keys:



#PasswordAuthentication yes


and



#PermitRootLogin yes


Above because I am logging in with root. And ... I also tried commenting out GSSAPIAuthentication. And yes ... I always restart the sshd daemon after making changes to this file (systemctl restart sshd.services)
Also ... I see nothing significant in /var/log/messages or /var/log/secure .. I've tried verbose using the ssh -v switch and what I do notice on this problem box is that shortly before the above "Permission denied" error is output I get this message:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic


Whereas on other boxes which work I always get this:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password


So clearly password authentication is not enabled !
The final straw is this: I get this same error message EVEN WHEN I SSH FROM THIS BOX TO ITSELF! There HAS to be some SSH setting I am missing.
Can someone please advise me what this setting is?






centos sshd







share|improve this question





















  • Hi, and welcome. Did you restart sshd after modifying the configuration file?
    – Andy Dalton
    Aug 23 at 14:18










  • Make sure you are writing those lines (PasswordAuthentication yes and PermitRootLogin yes) in /etc/ssh/sshd_config, and not the ssh_config. I notice you mentioning ssh_config in your question. If you are doing this right, it should work after restarting ssh service.
    – Vinod
    Aug 23 at 14:50










  • Please edit your question to include the contents of your sshd_config file (or at least the relevant parts), instead of describing what's in it and what you changed.
    – Kenster
    Aug 23 at 14:57










  • What is tbe exact command that you are using to log into the Centos 7 machine?
    – Nasir Riley
    Aug 23 at 17:36










  • I am using this: ssh root@centoshost ... at least most of the time. But I have also used the -i switch to indicate path to pubkey. And of course the -v sometimes to get verbose
    – Paul Cartier
    Aug 23 at 18:30













up vote
0
down vote

favorite









up vote
0
down vote

favorite











I have a frustrating SSH access problem on a new VM with Centos 7 which is driving me crazy!! It seems to be a first-time login problem on the new box.
I know all the basic settings ... this is about the 5th VM I have set up with this OS (So ifcfg.eth0, hostname, network etc is all good).
I can ping the new box as well ... remotely and from it to other boxes in the network. But ...
When I attempt remote SSH access I just keep getting the error:



Permission denied (publickey,gssapi-keyex,gssapi-with-mic)


I have seen this before and know about /etc/ssh/ssh_config ... and we are just talking password authentication here (not ssh key login). But only on this box I am getting it. I started off with just:



host *
GSSAPIAuthentication yes


This is what I used on the other machines and it always worked!
So, I have since tried uncommenting these keys:



#PasswordAuthentication yes


and



#PermitRootLogin yes


Above because I am logging in with root. And ... I also tried commenting out GSSAPIAuthentication. And yes ... I always restart the sshd daemon after making changes to this file (systemctl restart sshd.services)
Also ... I see nothing significant in /var/log/messages or /var/log/secure .. I've tried verbose using the ssh -v switch and what I do notice on this problem box is that shortly before the above "Permission denied" error is output I get this message:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic


Whereas on other boxes which work I always get this:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password


So clearly password authentication is not enabled !
The final straw is this: I get this same error message EVEN WHEN I SSH FROM THIS BOX TO ITSELF! There HAS to be some SSH setting I am missing.
Can someone please advise me what this setting is?






centos sshd







share|improve this question













I have a frustrating SSH access problem on a new VM with Centos 7 which is driving me crazy!! It seems to be a first-time login problem on the new box.
I know all the basic settings ... this is about the 5th VM I have set up with this OS (So ifcfg.eth0, hostname, network etc is all good).
I can ping the new box as well ... remotely and from it to other boxes in the network. But ...
When I attempt remote SSH access I just keep getting the error:



Permission denied (publickey,gssapi-keyex,gssapi-with-mic)


I have seen this before and know about /etc/ssh/ssh_config ... and we are just talking password authentication here (not ssh key login). But only on this box I am getting it. I started off with just:



host *
GSSAPIAuthentication yes


This is what I used on the other machines and it always worked!
So, I have since tried uncommenting these keys:



#PasswordAuthentication yes


and



#PermitRootLogin yes


Above because I am logging in with root. And ... I also tried commenting out GSSAPIAuthentication. And yes ... I always restart the sshd daemon after making changes to this file (systemctl restart sshd.services)
Also ... I see nothing significant in /var/log/messages or /var/log/secure .. I've tried verbose using the ssh -v switch and what I do notice on this problem box is that shortly before the above "Permission denied" error is output I get this message:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic


Whereas on other boxes which work I always get this:



debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password


So clearly password authentication is not enabled !
The final straw is this: I get this same error message EVEN WHEN I SSH FROM THIS BOX TO ITSELF! There HAS to be some SSH setting I am missing.
Can someone please advise me what this setting is?






centos sshd




centos sshd






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Aug 23 at 13:57









Paul Cartier

1




1











  • Hi, and welcome. Did you restart sshd after modifying the configuration file?
    – Andy Dalton
    Aug 23 at 14:18










  • Make sure you are writing those lines (PasswordAuthentication yes and PermitRootLogin yes) in /etc/ssh/sshd_config, and not the ssh_config. I notice you mentioning ssh_config in your question. If you are doing this right, it should work after restarting ssh service.
    – Vinod
    Aug 23 at 14:50










  • Please edit your question to include the contents of your sshd_config file (or at least the relevant parts), instead of describing what's in it and what you changed.
    – Kenster
    Aug 23 at 14:57










  • What is tbe exact command that you are using to log into the Centos 7 machine?
    – Nasir Riley
    Aug 23 at 17:36










  • I am using this: ssh root@centoshost ... at least most of the time. But I have also used the -i switch to indicate path to pubkey. And of course the -v sometimes to get verbose
    – Paul Cartier
    Aug 23 at 18:30

















  • Hi, and welcome. Did you restart sshd after modifying the configuration file?
    – Andy Dalton
    Aug 23 at 14:18










  • Make sure you are writing those lines (PasswordAuthentication yes and PermitRootLogin yes) in /etc/ssh/sshd_config, and not the ssh_config. I notice you mentioning ssh_config in your question. If you are doing this right, it should work after restarting ssh service.
    – Vinod
    Aug 23 at 14:50










  • Please edit your question to include the contents of your sshd_config file (or at least the relevant parts), instead of describing what's in it and what you changed.
    – Kenster
    Aug 23 at 14:57










  • What is tbe exact command that you are using to log into the Centos 7 machine?
    – Nasir Riley
    Aug 23 at 17:36










  • I am using this: ssh root@centoshost ... at least most of the time. But I have also used the -i switch to indicate path to pubkey. And of course the -v sometimes to get verbose
    – Paul Cartier
    Aug 23 at 18:30
















Hi, and welcome. Did you restart sshd after modifying the configuration file?
– Andy Dalton
Aug 23 at 14:18




Hi, and welcome. Did you restart sshd after modifying the configuration file?
– Andy Dalton
Aug 23 at 14:18












Make sure you are writing those lines (PasswordAuthentication yes and PermitRootLogin yes) in /etc/ssh/sshd_config, and not the ssh_config. I notice you mentioning ssh_config in your question. If you are doing this right, it should work after restarting ssh service.
– Vinod
Aug 23 at 14:50




Make sure you are writing those lines (PasswordAuthentication yes and PermitRootLogin yes) in /etc/ssh/sshd_config, and not the ssh_config. I notice you mentioning ssh_config in your question. If you are doing this right, it should work after restarting ssh service.
– Vinod
Aug 23 at 14:50












Please edit your question to include the contents of your sshd_config file (or at least the relevant parts), instead of describing what's in it and what you changed.
– Kenster
Aug 23 at 14:57




Please edit your question to include the contents of your sshd_config file (or at least the relevant parts), instead of describing what's in it and what you changed.
– Kenster
Aug 23 at 14:57












What is tbe exact command that you are using to log into the Centos 7 machine?
– Nasir Riley
Aug 23 at 17:36




What is tbe exact command that you are using to log into the Centos 7 machine?
– Nasir Riley
Aug 23 at 17:36












I am using this: ssh root@centoshost ... at least most of the time. But I have also used the -i switch to indicate path to pubkey. And of course the -v sometimes to get verbose
– Paul Cartier
Aug 23 at 18:30





I am using this: ssh root@centoshost ... at least most of the time. But I have also used the -i switch to indicate path to pubkey. And of course the -v sometimes to get verbose
– Paul Cartier
Aug 23 at 18:30











1 Answer
1






active

oldest

votes

















up vote
0
down vote













You commented out the password authentication. Therefore, openSSH is not accepting passwords as an authentication measure. The same applies to root login.



Remove the # on the lines 



PasswordAuthentication yes
PermitRootLogin yes


Then restart the service.






share|improve this answer




















  • I did uncomment them. See above: "I have since tried uncommenting these keys:" And .. I did restart sshd ... also above "And yes ... I always restart the sshd daemon after making changes to this file" In fact I've started sshd, networking and the entire VM many many times :-)
    – Paul Cartier
    Aug 23 at 14:24










Your Answer







StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: false,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f464409%2fcentos-7-ssh-permission-denied-why-no-password%23new-answer', 'question_page');

);

Post as a guest

















1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes








up vote
0
down vote













You commented out the password authentication. Therefore, openSSH is not accepting passwords as an authentication measure. The same applies to root login.



Remove the # on the lines 



PasswordAuthentication yes
PermitRootLogin yes


Then restart the service.






share|improve this answer




















  • I did uncomment them. See above: "I have since tried uncommenting these keys:" And .. I did restart sshd ... also above "And yes ... I always restart the sshd daemon after making changes to this file" In fact I've started sshd, networking and the entire VM many many times :-)
    – Paul Cartier
    Aug 23 at 14:24














up vote
0
down vote













You commented out the password authentication. Therefore, openSSH is not accepting passwords as an authentication measure. The same applies to root login.



Remove the # on the lines 



PasswordAuthentication yes
PermitRootLogin yes


Then restart the service.






share|improve this answer




















  • I did uncomment them. See above: "I have since tried uncommenting these keys:" And .. I did restart sshd ... also above "And yes ... I always restart the sshd daemon after making changes to this file" In fact I've started sshd, networking and the entire VM many many times :-)
    – Paul Cartier
    Aug 23 at 14:24












up vote
0
down vote










up vote
0
down vote









You commented out the password authentication. Therefore, openSSH is not accepting passwords as an authentication measure. The same applies to root login.



Remove the # on the lines 



PasswordAuthentication yes
PermitRootLogin yes


Then restart the service.






share|improve this answer












You commented out the password authentication. Therefore, openSSH is not accepting passwords as an authentication measure. The same applies to root login.



Remove the # on the lines 



PasswordAuthentication yes
PermitRootLogin yes


Then restart the service.







share|improve this answer












share|improve this answer



share|improve this answer










answered Aug 23 at 14:20









Panki

1739




1739











  • I did uncomment them. See above: "I have since tried uncommenting these keys:" And .. I did restart sshd ... also above "And yes ... I always restart the sshd daemon after making changes to this file" In fact I've started sshd, networking and the entire VM many many times :-)
    – Paul Cartier
    Aug 23 at 14:24
















  • I did uncomment them. See above: "I have since tried uncommenting these keys:" And .. I did restart sshd ... also above "And yes ... I always restart the sshd daemon after making changes to this file" In fact I've started sshd, networking and the entire VM many many times :-)
    – Paul Cartier
    Aug 23 at 14:24















I did uncomment them. See above: "I have since tried uncommenting these keys:" And .. I did restart sshd ... also above "And yes ... I always restart the sshd daemon after making changes to this file" In fact I've started sshd, networking and the entire VM many many times :-)
– Paul Cartier
Aug 23 at 14:24




I did uncomment them. See above: "I have since tried uncommenting these keys:" And .. I did restart sshd ... also above "And yes ... I always restart the sshd daemon after making changes to this file" In fact I've started sshd, networking and the entire VM many many times :-)
– Paul Cartier
Aug 23 at 14:24

















 

draft saved


draft discarded















































 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f464409%2fcentos-7-ssh-permission-denied-why-no-password%23new-answer', 'question_page');

);

Post as a guest
































































mkIYxo,JP1 R,3NBt13r WfmX,Wh RjEY2s7u1G n34azfskkgJGTmy
-
ccwYK7Dyw,67auYI

Popular posts from this blog

How to check contact read email or not when send email to Individual?

Image
Clash Royale CLAN TAG #URR8PPP up vote 1 down vote favorite I'm using WordPress 4.9.8, CiviCRM to 5.5.1, I usually send email to contact by Search> Find contacts View contact details Action> Send email Send email ok, Contact received mail ok like picture But status only Email sent though contact read email or not. So, can CiviCRM can change status to Email read when contact read email? wordpress email share | improve this question asked Sep 26 at 0:12 ToanLuong 49 9 add a comment  |  up vote 1 down vote favorite I'm using WordPress 4.9.8, CiviCRM to 5.5.1, I usually send email to contact by Search> Find contacts View contact details Action> Send email Send email ok, Contact received mail ok like picture But status only Email sent though contact read email or not. So, can CiviCRM can change status to Email read when contact read email? wordpress email share | improve this questi...
Read more

How many registers does an x86_64 CPU actually have?

Image
Clash Royale CLAN TAG #URR8PPP up vote 2 down vote favorite I am currently learning reverse engineering and am studying the flags register. I had in my mind that rflags was just another name for one of the 16 general purpose registers, for example rax or rbx . But it looks like rflags is actually an additional register. So that makes 17 registers in total... how many more could there be? I have spent at least an hour on this and found numerous different answers. The best answer so far is this, which says that there are 40 registers in total. 16 General Purpose Registers 2 Status Registers 6 Code Segment Registers 16 SSE Registers 8 FPU/MMX Registers But if I add that up, I get 48. Could anybody provide an official answer on how many registers an x86_64 CPU has (e.g. an Intel i7). Additionally, I have seen references to 'hardware' and 'architectural' registers. What are those registers and how many are there? register x86-64 share | improve this...
Read more

Displaying single band from multi-band raster using QGIS

Image
Clash Royale CLAN TAG #URR8PPP 1 How can I extract a single band from multi-band raster in QGIS? I have an remote sensed image which has 6 bands (including NDVI band), I want to display each band separately, but have no idea how to do. I have seen some questions similar here but none worked for me. The original image (has 6 bands) is: I want to display the band 6 which should be like this: But I tried gdal_translate, and couldn't get the correct result. What I have got is: qgis raster multi-band share | improve this question edited Mar 5 at 0:53 Summer asked Mar 4 at 6:42 Summer Summer 23 6 Is this any help gis.stackexchange.com/questions/220658/… ? if not gis.stackexchange.com/questions/62133/… might help. – Michael Stimson Mar 4 at 6:46 Thanks for answering but when I used gdal_translate, qgis showed that 'Error 4: Kayena.tif: No such file or directory". Would you know how to fi...
Read more