Ask Question Forum:
Model Library:2025-02-08 Updated:A.I. model is online for auto reply question page
C
O
M
P
U
T
E
R
2
8
Show
#
ASK
RECENT
←
- Underline
- Bold
- Italic
- Indent
- Step
- Bullet
- Quote
- Cut
- Copy
- Paste
- Table
- Spelling
- Find & Replace
- Undo
- Redo
- Link
- Attach
- Clear
- Code
Below area will not be traslated by Google,you can input code or other languages
Hint:If find spelling error, You need to correct it,1 by 1 or ignore it (code area won't be checked).
X-position of the mouse cursor
Y-position of the mouse cursor
Y-position of the mouse cursor
Testcursor
caretPos
Attachment:===
Asked by tolinrome
at 2024-05-23 16:38:41
ModifyPoint:500 Replies:18 POST_ID:828920USER_ID:11820
Topic:
Linux;SSH / Telnet Software;Linux Network Security
I'm using scp to copy a file from a remote device to a remote location. When asked for the password it says: , permission denied, please try again.
Of course the password is 100% correct. Why wont it let me copy the file to the remote server? Here is the script:
tmsh save /sys ucs ${SysName}_${Date}.ucs
${Delay:120}
scp /var/local/ucs/${SysName}_${Date}.ucs username@1.2.3.4:${SysName}_${Date}.ucs
password
[root@DEVICE:Standby:In Sync] ucs # scp /var/local/ucs/${SysName}_${Date}.ucs user4@10.10.5.7:${SysName}_${Date}.ucs
The authenticity of host '10.10.5.7 (10.10.5.7)' can't be established.
RSA key fingerprint is b2:d0:cd:0b:27:db:08:5c:bc:57:28:26:64:0d:f6:11.
Are you sure you want to continue connecting (yes/no)? y
Please type 'yes' or 'no': yes
Warning: Permanently added '10.10.5.7' (RSA) to the list of known hosts.
user4@10.10.5.7's password:
Permission denied, please try again.
user4@10.10.5.7's password:
Permission denied, please try again.
user4@10.10.5.7's password:
Received disconnect from 10.10.5.7: 2: Too many attempts.
lost connection
Of course the password is 100% correct. Why wont it let me copy the file to the remote server? Here is the script:
tmsh save /sys ucs ${SysName}_${Date}.ucs
${Delay:120}
scp /var/local/ucs/${SysName}_${Date}.ucs username@1.2.3.4:${SysName}_${Date}.ucs
password
[root@DEVICE:Standby:In Sync] ucs # scp /var/local/ucs/${SysName}_${Date}.ucs user4@10.10.5.7:${SysName}_${Date}.ucs
The authenticity of host '10.10.5.7 (10.10.5.7)' can't be established.
RSA key fingerprint is b2:d0:cd:0b:27:db:08:5c:bc:57:28:26:64:0d:f6:11.
Are you sure you want to continue connecting (yes/no)? y
Please type 'yes' or 'no': yes
Warning: Permanently added '10.10.5.7' (RSA) to the list of known hosts.
user4@10.10.5.7's password:
Permission denied, please try again.
user4@10.10.5.7's password:
Permission denied, please try again.
user4@10.10.5.7's password:
Received disconnect from 10.10.5.7: 2: Too many attempts.
lost connection
Expert: test test replied at 2026-04-13 23:18:05
scp /var/local/ucs/${SysName}_${Date}.ucs 'DOMAINuser4'@10.10.5.7:${SysName}_${Date}.ucs Author: tolinrome replied at 2024-05-24 13:05:44
Good effort, thanks for the help.
Accepted Solution
Expert: Mazdajai replied at 2024-05-24 12:25:36
500 points EXCELLENT
SolarWindows scp server 1.0.4.9 only support virtual user authentication. It does not support windows authentication or Kerberos.
To add user, navigate to:
File > Configure > Users
To add user, navigate to:
File > Configure > Users
Expert: Tintin replied at 2024-05-24 00:18:45
Do you have access to the Solarwinds server? If so, can you check what authentication settings it has.
Author: tolinrome replied at 2024-05-23 19:45:36
something to do with this?
debug1: Authentications that can continue: password,publickey
debug1: Next authentication method: publickey
debug1: Offering public key: /root/.ssh/identity
debug1: Server accepts key: pkalg ssh-rsa blen 149
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: password,publickey
debug1: Trying private key: /root/.ssh/id_rsa
debug1: Trying private key: /root/.ssh/id_dsa
debug1: Next authentication method: password
debug1: Authentications that can continue: password,publickey
debug1: Next authentication method: publickey
debug1: Offering public key: /root/.ssh/identity
debug1: Server accepts key: pkalg ssh-rsa blen 149
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: password,publickey
debug1: Trying private key: /root/.ssh/id_rsa
debug1: Trying private key: /root/.ssh/id_dsa
debug1: Next authentication method: password
Author: tolinrome replied at 2024-05-23 19:40:42
local account I tried as well, no go, thanks for your help.
Expert: Mazdajai replied at 2024-05-23 19:30:40
I would assume it would work for a local user account?
You will need to contact Solarwinds with compatibility or support Solarwinds SCP and kerberos.
You will need to contact Solarwinds with compatibility or support Solarwinds SCP and kerberos.
Author: tolinrome replied at 2024-05-23 19:22:59
Yes I have tried that and still nothing.
Expert: Mazdajai replied at 2024-05-23 19:16:20
Looks like it has problem passing the domain credentials with kerberos, have you tried specifying the domain name?
scp /var/local/ucs/${SysName}_${Date}.ucs 'DOMAINuser4'@10.10.5.7:${SysName}_${Date}.ucs 1:
Author: tolinrome replied at 2024-05-23 19:04:41
The password is 100% correct and the account is not locked out, I just verified and logged in again to the Windows host with thee credentials. From the remote server I cannot use tis command - ssh -vvv user4@10.10.5.7
If I try it in the Linux OS it asks for the password again.
If I try it in the Linux OS it asks for the password again.
Expert: Mazdajai replied at 2024-05-23 18:59:23
How did you verify the password is correct? Is the AD account active or not locked? Are you able to do the following from the remote server?
Author: tolinrome replied at 2024-05-23 18:58:53
the destination server is a Windows host with Solarwinds SCP server and services running.
Author: tolinrome replied at 2024-05-23 18:55:12
Here you go:
btw, that user account is a Windows AD account.
# grep -i user4 /var/log/secure
May 23 19:16:36 Device notice shell: scp -t /location/to/file user4@10.10.5.7:/location/of/target
May 23 19:17:05 Device notice shell: scp /location/to/file user4@10.10.5.7:/location/of/target
May 23 19:17:11 Device notice shell: scp /location/to/file user4@10.10.5.7:/location/of/target
May 23 19:17:27 Device notice shell: scp /location/to/file user4@10.10.5.7:/location/of/target
btw, that user account is a Windows AD account.
# grep -i user4 /var/log/secure
May 23 19:16:36 Device notice shell: scp -t /location/to/file user4@10.10.5.7:/location/of/target
May 23 19:17:05 Device notice shell: scp /location/to/file user4@10.10.5.7:/location/of/target
May 23 19:17:11 Device notice shell: scp /location/to/file user4@10.10.5.7:/location/of/target
May 23 19:17:27 Device notice shell: scp /location/to/file user4@10.10.5.7:/location/of/target
Expert: Mazdajai replied at 2024-05-23 18:51:46
Can you provide the following in 10.10.5.7?
Author: tolinrome replied at 2024-05-23 18:49:42
Well I tried the other suggestions and no go. Here is the output with the -v flag. Looks like it wants password,public key then password? I dont know.
[root@F5-NODE2:Standby:In Sync] ucs # scp -v /var/local/ucs/${SysName}_${Date}.ucs user4@10.10.5.7:/tmp/${SysName}_${Date}.ucs
Executing: program /usr/bin/ssh host 10.10.5.7, user user4, command scp -v -t /tmp/_.ucs
OpenSSH_4.3p2, OpenSSL 0.9.8y 5 Feb 2013
debug1: Reading configuration data /config/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to 10.10.5.7 [10.10.5.7] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file /root/.ssh/identity type 1
debug1: identity file /root/.ssh/id_rsa type -1
debug1: identity file /root/.ssh/id_dsa type -1
debug1: loaded 3 keys
debug1: Remote protocol version 2.0, remote software version WeOnlyDo 2.1.3
debug1: no match: WeOnlyDo 2.1.3
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.3
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: sending SSH2_MSG_KEXDH_INIT
debug1: expecting SSH2_MSG_KEXDH_REPLY
debug1: Host '10.10.5.7' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: password,publickey
debug1: Next authentication method: publickey
debug1: Offering public key: /root/.ssh/identity
debug1: Server accepts key: pkalg ssh-rsa blen 149
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: password,publickey
debug1: Trying private key: /root/.ssh/id_rsa
debug1: Trying private key: /root/.ssh/id_dsa
debug1: Next authentication method: password
user4@10.10.5.7's password:
debug1: Authentications that can continue: password,publickey
Permission denied, please try again.
user4@10.10.5.7's password:
debug1: Authentications that can continue: password,publickey
Permission denied, please try again.
user4@10.10.5.7's password:
Received disconnect from 10.10.5.7: 2: Too many attempts.
lost connection
[root@F5-NODE2:Standby:In Sync] ucs #
[root@F5-NODE2:Standby:In Sync] ucs # scp -v /var/local/ucs/${SysName}_${Date}.ucs user4@10.10.5.7:/tmp/${SysName}_${Date}.ucs
Executing: program /usr/bin/ssh host 10.10.5.7, user user4, command scp -v -t /tmp/_.ucs
OpenSSH_4.3p2, OpenSSL 0.9.8y 5 Feb 2013
debug1: Reading configuration data /config/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to 10.10.5.7 [10.10.5.7] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file /root/.ssh/identity type 1
debug1: identity file /root/.ssh/id_rsa type -1
debug1: identity file /root/.ssh/id_dsa type -1
debug1: loaded 3 keys
debug1: Remote protocol version 2.0, remote software version WeOnlyDo 2.1.3
debug1: no match: WeOnlyDo 2.1.3
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.3
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: sending SSH2_MSG_KEXDH_INIT
debug1: expecting SSH2_MSG_KEXDH_REPLY
debug1: Host '10.10.5.7' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: password,publickey
debug1: Next authentication method: publickey
debug1: Offering public key: /root/.ssh/identity
debug1: Server accepts key: pkalg ssh-rsa blen 149
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: password,publickey
debug1: Trying private key: /root/.ssh/id_rsa
debug1: Trying private key: /root/.ssh/id_dsa
debug1: Next authentication method: password
user4@10.10.5.7's password:
debug1: Authentications that can continue: password,publickey
Permission denied, please try again.
user4@10.10.5.7's password:
debug1: Authentications that can continue: password,publickey
Permission denied, please try again.
user4@10.10.5.7's password:
Received disconnect from 10.10.5.7: 2: Too many attempts.
lost connection
[root@F5-NODE2:Standby:In Sync] ucs #
Expert: Tintin replied at 2024-05-23 17:22:35
Run scp in verbose mode with the -v flag and post the output.
Expert: Mazdajai replied at 2024-05-23 17:08:36
Can you try the following?
scp /var/local/ucs/${SysName}_${Date}.ucs user4@10.10.5.7:/tmp/${SysName}_${Date}.ucsscp /var/local/ucs/${SysName}_${Date}.ucs user4@10.10.5.7:/home/user4/${SysName}_${Date}.ucs 1:2:
Expert: duncanb7 replied at 2024-05-23 17:03:23
It may be keyboard typing-in format is different between remote system and your system
You may conside to use scp without password as following this article
https://blogs.oracle.com/jkini/entry/how_to_scp_scp_and
OR
may try correct the keyboard type allowed for users in remote system.
Duncan
You may conside to use scp without password as following this article
https://blogs.oracle.com/jkini/entry/how_to_scp_scp_and
OR
may try correct the keyboard type allowed for users in remote system.
Duncan
