4 Replies Latest reply on Nov 21, 2016 6:39 AM by Bill Robinson

    Remote Host Authentication failed to validate : BBSA 8.5

    Rohini Chaudhari

      Hi,

       

      I am trying to install Linux RSCD agent 8.5 through BBSA console. Initially, I have created a folder in depot and have added a software of RCSD agent 64bit. I have created Agent Bundle and after this I have created Automation Principal in RBACAdmin.

       

      In Configuration, Infrastructure management I have created RHA :

       

       

       

       

       

      The target system's firewalls are off, though RHA is showing success above but while executing against target server it is getting failed.

       

      Please suggest for the same.

       

       

      Regards,

      Rohini Chaudhari.

        • 1. Re: Remote Host Authentication failed to validate : BBSA 8.5
          Bill Robinson

          can you ssh as root w/ password authentication to your target system?

           

          what's in /var/log/secure on the target when the aij fails ?

          • 2. Re: Remote Host Authentication failed to validate : BBSA 8.5
            Rohini Chaudhari

            I have seen the contents of /var/log/secure but unable to understand . Please find the below file contents :

             

            [rohini@localhost /]$ su

            Password:

            [root@localhost /]# cd var/

            [root@localhost var]# ls

            account  crash  empty  gdm  local  log   nis  preserve  spool  www

            cache    db     games  lib  lock   mail  opt  run       tmp    yp

            [root@localhost var]# cd log/

            [root@localhost log]# ls

            anaconda.ifcfg.log    ConsoleKit  messages          tallylog

            anaconda.log          cron        ntpstats          vmware-tools-upgrader.log

            anaconda.program.log  cups        pm-powersave.log  wpa_supplicant.log

            anaconda.storage.log  dmesg       ppp               wtmp

            anaconda.syslog       dmesg.old   prelink           Xorg.0.log

            anaconda.xlog         dracut.log  rhsm              Xorg.0.log.old

            anaconda.yum.log      gdm         sa                yum.log

            audit                 httpd       secure

            boot.log              lastlog     spice-vdagentd

            btmp                  maillog     spooler

            [root@localhost log]# cat secure

            Nov 17 05:53:23 localhost sshd[1716]: Server listening on 0.0.0.0 port 22.

            Nov 17 05:53:23 localhost sshd[1716]: Server listening on :: port 22.

            Nov 17 00:32:31 localhost polkitd(authority=local): Registered Authentication Agent for session /org/freedesktop/ConsoleKit/Session1 (system bus name :1.29 [/usr/libexec/polkit-gnome-authentication-agent-1], object path /org/gnome/PolicyKit1/AuthenticationAgent, locale en_US.UTF-8)

            Nov 17 01:19:59 localhost pam: gdm-password[10913]: pam_unix(gdm-password:session): session opened for user rohini by (uid=0)

            Nov 17 01:19:59 localhost polkitd(authority=local): Unregistered Authentication Agent for session /org/freedesktop/ConsoleKit/Session1 (system bus name :1.29, object path /org/gnome/PolicyKit1/AuthenticationAgent, locale en_US.UTF-8) (disconnected from bus)

            Nov 17 01:20:09 localhost polkitd(authority=local): Registered Authentication Agent for session /org/freedesktop/ConsoleKit/Session2 (system bus name :1.52 [/usr/libexec/polkit-gnome-authentication-agent-1], object path /org/gnome/PolicyKit1/AuthenticationAgent, locale en_US.utf8)

            Nov 17 01:29:23 localhost su: pam_unix(su:session): session opened for user root by rohini(uid=500)

            Nov 17 01:29:26 localhost userhelper[32868]: running '/usr/sbin/setup ' with root privileges on behalf of 'root'

            Nov 17 04:38:59 localhost gnome-screensaver-dialog: pam_unix(gnome-screensaver:auth): conversation failed

            Nov 17 04:38:59 localhost gnome-screensaver-dialog: pam_unix(gnome-screensaver:auth): auth could not identify password for [rohini]

            Nov 17 04:38:59 localhost gnome-screensaver-dialog: gkr-pam: no password is available for user

            Nov 17 21:21:02 localhost sshd[2013]: Server listening on 0.0.0.0 port 22.

            Nov 17 21:21:02 localhost sshd[2013]: Server listening on :: port 22.

            Nov 17 21:21:17 localhost polkitd(authority=local): Registered Authentication Agent for session /org/freedesktop/ConsoleKit/Session1 (system bus name :1.25 [/usr/libexec/polkit-gnome-authentication-agent-1], object path /org/gnome/PolicyKit1/AuthenticationAgent, locale en_US.UTF-8)

            Nov 17 21:21:29 localhost pam: gdm-password[2446]: pam_unix(gdm-password:session): session opened for user rohini by (uid=0)

            Nov 17 21:21:29 localhost polkitd(authority=local): Unregistered Authentication Agent for session /org/freedesktop/ConsoleKit/Session1 (system bus name :1.25, object path /org/gnome/PolicyKit1/AuthenticationAgent, locale en_US.UTF-8) (disconnected from bus)

            Nov 17 21:21:32 localhost polkitd(authority=local): Registered Authentication Agent for session /org/freedesktop/ConsoleKit/Session2 (system bus name :1.48 [/usr/libexec/polkit-gnome-authentication-agent-1], object path /org/gnome/PolicyKit1/AuthenticationAgent, locale en_US.utf8)

            Nov 17 21:23:09 localhost su: pam_unix(su:session): session opened for user root by rohini(uid=500)

            Nov 17 21:28:04 localhost su: pam_unix(su:session): session closed for user root

            Nov 17 21:28:14 localhost su: pam_unix(su:session): session opened for user root by rohini(uid=500)

            Nov 17 21:28:37 localhost su: pam_unix(su:session): session closed for user root

            Nov 17 21:28:44 localhost su: pam_unix(su:session): session opened for user root by rohini(uid=500)

            [root@localhost log]#

             

             

            Please, do the needful.

            • 3. Re: Remote Host Authentication failed to validate : BBSA 8.5
              Rohini Chaudhari

              Hi,

               

              Could anyone please tell me what changes do I need to make here in secure file of target server.

               

              Regards,

              Rohini Chaudhari.

              • 4. Re: Remote Host Authentication failed to validate : BBSA 8.5
                Bill Robinson

                /var/log/secure is a log file that sshd logs to.  the point of looking in there was to see if it showed any information about the failed authentication attempts when the aij ran.

                 

                do you see any authentication attempts as the user in the 'Remote Host Authentication' from the appserver to this system when the aij runs ?  if you don't then the problem wouldn't seem to be w/ authenticating on the target.