F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Zuke_254875's avatar
Zuke_254875
Icon for Altostratus rankAltostratus
Mar 02, 2018

SSH connections prompting for password

I have a situation where a couple of guests are prompting a server for a password. These guests have the correct key in /.ssh/authorized_keys; other guests with identical authorized_keys do not prompt the server for a password.

 

Rebooting the guests did not fix the issue. I am able to authenticate with my cert/key no problem.

 

application delivery
BIG-IP

1 Reply

  • TimRiker's avatar
    TimRiker
    Icon for Cirrocumulus rankCirrocumulus
    Feb 22, 2023

    Check permissions and contexts on the files in .ssh. This won't work:

    # ls -lZ
    lrwxrwxrwx. root webusers system_u:object_r:unlabeled_t:s0 authorized_keys -> /var/ssh/root/authorized_keys
    lrwxrwxrwx. root webusers system_u:object_r:unlabeled_t:s0 identity -> /var/ssh/root/identity
    lrwxrwxrwx. root webusers system_u:object_r:unlabeled_t:s0 identity.pub -> /var/ssh/root/identity.pub
    lrwxrwxrwx. root webusers system_u:object_r:unlabeled_t:s0 known_hosts -> /var/ssh/root/known_hosts

    but this will:

    # ls -lZ
    lrwxrwxrwx. root root unconfined_u:object_r:ssh_home_t:s0 authorized_keys -> /var/ssh/root/authorized_keys
    lrwxrwxrwx. root root unconfined_u:object_r:ssh_home_t:s0 identity -> /var/ssh/root/identity
    lrwxrwxrwx. root root unconfined_u:object_r:ssh_home_t:s0 identity.pub -> /var/ssh/root/identity.pub
    lrwxrwxrwx. root root unconfined_u:object_r:ssh_home_t:s0 known_hosts -> /var/ssh/root/known_hosts