I have question regarding AD authentication. Will Ubuntu workstation joined AD domain via likewise client authorize to TMG proxy directly without any utilities like ntlmaps and etc?
View 1 Replies
I want to configure SSH key-based authentication and SSH password Authentication in same machine for different user .
View 1 Replies View RelatedOn Ubuntu server 10.10, with a relay smtp server with authentication via postfix; I keep getting 535: Incorrect authentication data. I'm sure my username and password is correct. Heres how I set up postfix: I created a file called smarthosts.conf in my /etc/postfix/ directory that contains the following:
[Code].....
my server uses plain text authentication on port 25. I would like to use security like SSL, but this particular server is unsecured.
If I am running a script, let's say a install script. Is there a way to make Su repeat authentication rather then just returning "Authentication failed" and continuing the script?
View 3 Replies View RelatedI need to make a choice on what authentication protocol I want to use for Authentication and Authorization. I was looking at Radius and then literature suggested that Diameter was a better protocol. Keep in mind I need this on a hetrogeneous setup ( linux & windows together). Diameter seemed like a good fit until I discovered that the open source code no longer seems to be maintained ( C/C++).
I was also looking at Kerberos as an option though there is alot overhead with the server. SSL/TLS or EAP? I am looking for simple but secure and am new at the security protocols.
I have a problem with ldap client authentication in ubuntu. I am using rhel5 as openldap server and I configured ubuntu as client, when I am trying to login the following message is coming."su: Authentication service cannot retrieve authentication info. Sorry"
But when I do search through "ldapsearch" command output is coming without any errors, Can anybody explain what would be problem.
At my workplace the wireless connection is open but once you connect you first need to authenticate on your browser to be able to use the internet.On Windows as soon as I open whatever page I get the login request.On Linux I open firefox but nothing happens, just get the usual error page like if I had no connection. The IP's I get as well as DNS seem ok, I even tryed to match them up with windows.I tried a lot but can't get to the login page.
View 3 Replies View RelatedI'm trying to connect to my Xubuntu box (zelda) remotely using my RSA key. I'm using Cygwin on my Windows box (link) to SSH in to the Xubuntu box. I've created the key and placed it in the authorized_keys file on my remote box. Here's where it gets weird. When I ssh into zelda the first time, it prompts me for my password. However, if I'm already connected to zelda and try to open another connection, it prompts me for my RSA passphrase. This is very confusing, and I have no idea what's going on.Here's my sshd_config file on zelda.
Code:
# Package generated configuration file
# See the sshd(8) manpage for details
[code]...
I am using ubuntu in my new office, and I can't get the network working. The "official" OS installed was a Windows, and it has a special "dial-up" app for the LAN connection (not wireless). My network admin is apparently not helpful, since he actually knows nothing about the internals for the "dial-up" app (he did not even ever heard of TTLS, PEAP, MD5, etc), and claimed that no OS except for Windows can work...
Well, I have tested various configurations with my Mac laptop, and apparently the LAN connection requires 802.1X authentication, and it's using a very weird combination "TTLS+PEAP+MD5" (if I check these options in Mac OS X, the connection works). However, in NetworkManager, I can't select both TTLS and PEAP, and moreover, TTLS does not work with MD5. So, is there anything I could try?
After 72 hours googling for this I found nothing. I have problem with pppoe on ubuntu 9.10.
On fresh installed ubuntu i tried to establish pppoe connection with this command:
Code:
This (pppoe) doesn't work from the live cd
I have been used NX client on windows 7 connected to ubuntu with NX client/node/server with no issues. The matter started when I have formatted Ubuntu and reinstalled NX, from that NX connects but shows a key error as follows:
NX> 203 NXSSH running with pid: 4328
NX> 285 Enabling check on switch command
NX> 285 Enabling skip of SSH config files
[code]....
when I enter my network password, it fails authentication.Before, it logged onto the network without the prompt, but still took a while to connect after desktop finished loading.
View 3 Replies View Relatedfor weeks now I have the following problem: I am not able to connect to my wireless home network for most of the time. I am using Ubuntu 10.04; an Intel Wifi AGN4965 card and as driver "iwlagn". Maybe the solution lies within these messages (from daemon.log):
Sep 20 22:03:35 ubuntu NetworkManager: <info> starting...
Sep 20 22:03:35 ubuntu avahi-daemon[1130]: Found user 'avahi' (UID 104) and group 'avahi' (GID 111).
Sep 20 22:03:35 ubuntu avahi-daemon[1130]: Successfully dropped root privileges.
Sep 20 22:03:35 ubuntu avahi-daemon[1130]: avahi-daemon 0.6.25 starting up.
Sep 20 22:03:35 ubuntu avahi-daemon[1130]: Successfully called chroot().
[Code]....
I have a network and am using squid proxy with authentication I want to create another subnet without authentication.
View 1 Replies View RelatedI have done the port forwarding to a production machine from our office machine it includes 3 hopes ie 3 machine in which I have done the portforwarding... but I am not able to rsync and directory or file even small fies with 10KB, but I am able to do do the rsync in to the same machine with 2 hopes
View 1 Replies View RelatedI have an ssh (OpenSSH_5.1p1 Debian-6ubuntu2) client A and a server B set up for public key authentication as described in [URL]
The problem is the following: ssh asks for a password when connecting from A to B without any other ssh session going on between A and B; but if I connect from A to B whenever there is another ssh session between A and B, either I get prompted for the passphrase I used to encrypt the private key or I get logged automatically.
I already checked permissions on B: .ssh is 700 and authorized_keys is 600. I already tried "StrictModes no" in sshd_config. Printing debug information using DEBUG3 does not any useful insight. Moreover, there is no /var/log/secure (is it supposed to be there?)
Right now the computer is far far away from my reach, but when I configured the system I noted that whenever I was locally logged to B and then ssh'ed from A to B, I was logged in without any problem; whenever I was not logged in locally I was asked for a password. Note that at that time I was using a different public/private key pair whose private part had no passphrase.
how to know exactly what cipher is ssh/sshd using for a particular session? Is there a way to know any statistics for a given session (something like the ~s option in section 5 of [URL]
P.S. 2: does the following mean that ssh is using protocol 2.0 or something different than protocol 2.0?
(..........) sshd[2606]: debug1: Enabling compatibility mode for protocol 2.0
if there is support for Network Level Authentication.
View 1 Replies View RelatedI was asked to setup 802.1x Port Based Authentication for users connecting to a Managed Cisco Switch. From what I was told, it should work like this:
- User plugs workstation into switch.
- Workstation asks user for radius credentials.
- Workstation is then able to authenticate to the Radius server.
- After workstation is authenticated, the switchport then becomes unrestricted and allows the workstation to communicate on the network.
So I was trying to configure my CUPS server and checked the box marked "Use Kerberos Authentication." Now, I cannot change anything and get an unauthorized error every time I try. How can I remove Kerberos? I have access to the local computer as root and can use sudo.
View 2 Replies View RelatedI'm trying to get OpenSSH public key authentication to work. My server runs ubuntu. My client is a windows machine, and I'm using cygwin. I tried using the instructions here: [URL]... If I test it out using this line: ssh -v -v -v -o PreferredAuthentications=publickey server.example.org
I get this:
debug3: no such identity: /home/Julie/.ssh/identity
debug1: Offering public key: /home/Julie/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug3: Wrote 368 bytes for a total of 1477
[Code]...
I'm looking for an solution to get an automatic authentication and login to my FON hotspot. I did some search on this but I can't find an solution on this. Is there a way to get it work? I'm running on Ubuntu 10.04.
View 3 Replies View Relatedthis is all I need simple VPN with authentication to external Radius server. Here is what I have done to try and get this goal accomplished. 1st try using PPTPD and Radius plugin No matter what I have tried (long explanation here [URL].. I can't get PPTPD to talk to my Radius server, even though I can authenticate using the same server and radius server using pam radius. PPTPD just won't, and so far the POTOP mail list has been quiet since my post to them and no replies/ideas in my other post, see forum link above.
2nd try using OpenVPN and their pam auth plugin. I give up on this one! I have the server working great BUT! As soon as I enable the plugin /usr/lib/openvpn/openvpn-auth-pam.so in the config I get this when trying to start the VPN server. kernel: [3725586.167177] openvpn[28364]: segfault at 0 ip 00007fd6e5e38fb4 sp 00007fff434f18f0 error 4 in openvpn-auth-pam.so[7fd6e5e38000+3000] Google turns up nothing on Segfaults on the openvpn-auth-pam.so Ug at my wits end, anybody have any other suggestions? I'm at a total loss ATM.
I'm trying to restrict command line ssh and yet keep NoMachine working, so I followed this post [URL]... and tried adding this to /etc/ssh/sshd_config:
AllowUsers nx@*.*.*.* paul@*.*.*.* *@::ffff:127.0.0.1 *@127.0.0.1
On restarting the ssh daemon other users can't login by the terminal, but I can. However, NoMachine won't log me in. I get: NX> 502 ERROR: Public key authentication failed. As a server side check:
[code]...
I have 2 laptops running Ubuntu 10.04. One connects to my Linksys wireless modem fine while the other does not. The one that does not connect, will connect fine within the instances of Windows XP SP3 and Puppy Linux 5.1 that run on the same laptop. Ubuntu wireless worked fine with version 8.04 on this laptop before upgrading to 10.04.
When trying to connect within 10.04, Ubuntu pops up the dialog box to enter the authentication key. It rejects the correct key, and after a moment, pops up the same dialog box asking for the key again. I'm using WEP 40/128-bit encryption and the key I enter in the dialog box is the correct 26-character key.
The laptop is a Toshiba Satellite Pro 6000 (1g ram/40g disk). Here are some vital outputs root@user-laptop:/home/bsmis# iwconfig
lo no wireless extensions.
eth0 no wireless extensions.
irda0 no wireless extensions.
eth1 IEEE 802.11b ESSID:"kr_wireless"
Mode:Managed Frequency:2.457 GHz Access Point: None
Bit Rate:11 Mb/s Sensitivity:1/0
[Code]...
I have already managed to connect to my corporate wireless network which uses WPA Enterprise/PEAP along with an identity and a password using my *Android* phone.
Unfortunately, I am unable to do so via Ubuntu 10.10 on my laptop. The issue that I observe is that the 'Wireless Security' tab of network manager has 3 options MSCHAPv2, MD5 and GTC for Inner Authentication. But there is no option for 'None' - which is what my Android phone specifies.
I tested whether this difference was responsible by explicitly specifying these 3 authentication options on my android phone and with any of the 3 selected, the wireless connection was unsuccessful. So I confirmed that this phase2 or inner authentication needs to be set to None in order to be successful. But network manager doesn't seem to allow a none or empty option. Should I open a bug on this ?
Do I need to manually setup wpa_supplicant.conf and /etc/network/interfaces ? The latter is a long winded procedure and I am uncertain about the 'side-effects' it can have with the network manager applet.
Our system setup: windows server domain controller 2008 We are installed sambain Ubuntu 11.04, with ads authentication using winbind,i can able to give the access restriction from Linux for windows ADS User for linux samba share folderall are working fine from Linux,i want give the access fro domain user from MS -windows , what is the file permission owner ,etc, any one try this concept please give me a any document any example
View 1 Replies View RelatedI want to use nomachine, instead of freenx, and well it isn't working. SSH server works and all, because freenx works., same for neatx. But I hear with nomachine you can see the main display of the computer? Is this true? Well one way to find out, but whenever I try to login I get: Authentication failed for user x. I don't know why, neatx and freenx worked, even x2go, but not this.
View 1 Replies View Relatedi have windows server 2003 in my office and my xp client uses domain based active directory login in their own systems ,my question is that how can i create the same environment in the linux platform
View 1 Replies View RelatedI have 2 boxes, both using Slackware64 ver. 13.
Box1 - ssh server and rsync server daemon are functional.
Box2 - client box that connects to Box1 by ssh as well as rsync by way of ssh.
I followed the instructions in Chapter 2 of the O'Reilly book "The Secure Shell, The Definitive Guide" to setup ssh authentication by pub/private keys. The configuration works, but only once, and upon re-logging into Box2, I find I have to go through the following setup to make it work again -
$ssh-agent $SHELL
$ssh-add /home/mike/.ssh/id_rsa
then prompted to provide passphrase.
Then rsync over ssh will work - example:
rsync -e "ssh -p 45000" -avzi mike@10.10.10.100:/zzz /mnt/current
I want to get it configured so that it works every time with no user input, in order to configure automatic cronjobs using rsync commands like the one above.
I tried to get my 3G connection up with my Lenovo Ideapad S10-2 and its built-in Ericsson 3G modem. Well, as I found out after some time of debugging, it didn't work because my network provider only accepts PAP authentication, and regardless of the configuration within NetworkManager, the ModemManager always tried CHAP authentication.
I guess this is because the dialog of selecting PAP, CHAP etc. seems only be used for pppd, but not for the internal setup of the 3G modem.
For the Ericsson (and possibly other modems), the authentication for a packet connection is done with the AT*EIAAUW command, which is hard-coded in modem-manager to use the defaults for authentication.
I patched my ModemManager to allow only PAP in the AT*EIAAUW command, and this worked out perfectly. You can find the patch below. Beware that this is certainly not something that should be included by default, only given here for reference.
Frankly, I don't know who to address to talk about a possibility to get this feature (authentication method selection) in the ModemManager in a clean fashion. I'd be happy to provide some assistance to improve the ModemManager. If someone could provide me with a hint who to talk to or what to do next.
For your reference: the "00010" in this case references a bit-field of 5 positions, whereas the bits mark the authentication algorithms (MS-CHAPv2, MS-CHAP, CHAP, PAP, NONE) respectively. So, 00010 enables PAP and disables the rest.
----------------------------------------------------------------------
root@frodo:/usr/src/modemmanager-0.2.git.20091014t233208.16f3e00/plugins# diff -U 5 mm-modem-mbm.c.orig mm-modem-mbm.c
--- mm-modem-mbm.c.orig 2009-10-15 01:35:39.000000000 +0200
+++ mm-modem-mbm.c 2010-01-11 20:21:49.819500184 +0100
[Code].....
