Re: SSH error deploying agent in OEM

From: Andrew Kerber <andrew.kerber_at_gmail.com>
Date: Thu, 15 Apr 2021 09:43:36 -0500
Message-ID: <CAJvnOJZpKLM1XYPr+tXJNbpp1gBaf5180fOHcQhbmUS8CpFyvQ_at_mail.gmail.com>

I found this in /var/log/secure. Does this mean the high ports are blocked? (changed ip addresses and names for security reasons):

Apr 15 08:47:55 hostname sshd[28686]: Did not receive identification string from 10.x.x.x port 48424
Apr 15 08:47:55 hostname sshd[28687]: error: maximum authentication attempts exceeded for oracle from 10.x.x.x. port 48426 ssh2 [preauth] Apr 15 08:47:55 hostname sshd[28687]: Disconnecting: Too many authentication failures [preauth]
Apr 15 08:47:55 hostname sshd[28689]: error: maximum authentication attempts exceeded for oracle from 10.x.x.x port 48428 ssh2 [preauth] Apr 15 08:47:55 hostname sshd[28689]: Disconnecting: Too many authentication failures [preauth]

On Thu, Apr 15, 2021 at 8:14 AM Chris Taylor < christopherdtaylor1994_at_gmail.com> wrote:

> Check /var/log/messages and /var/log/secure - it should tell you the
> problem after a failed ssh authentication.
>
> Often its going to be the permissions are too open on either/all:
>
> Check:
> $HOME
> $HOME/.ssh
> $HOME/.ssh/authorized_keys $HOME/.ssh/id_rsa
>
> Permissions should be:
>
> $HOME/.ssh = drwx------ (owner= full , none othter)
> $HOME/.ssh/authorized_keys = -rw------ (owner read-write only)
> $HOME/.ssh/id_rsa = -rw------ (owner read-write only)
>
> Also make sure the OEM server is correctly resolving the correct host and
> not going out to some other host you didn't expect.
>
> Either way, /var/log/messages, /var/log/secure should tell you what the
> problem is.
>
> Chris
>
>
>
> On Thu, Apr 15, 2021 at 8:58 AM Andrew Kerber <andrew.kerber_at_gmail.com>
> wrote:
>
>> This one is kind of strange. I have tested ssh from the oem server to
>> the particular database server in question logged in as oracle, and it
>> works fine.
>>
>> However, whenever I try to deploy an agent onto the new database server,
>> I get this error:
>> Connection to the SSH daemon (sshd) on the target host failed with the
>> following error : Too many authentication failures Connection to the SSH
>> daemon (sshd) on the target host failed with the following error : Too many
>> authentication failures Connection to the SSH daemon (sshd) on the
>> target host failed with the following error : Too many authentication
>> failures
>>
>> Connection to the SSH daemon (sshd) on the target host failed with the
>> following error : Too many authentication failures
>> I have tested the credentials multiple times from oem and verified that
>> they are valid. I cant figure out what the issue is. Has anyone run into
>> this and have any ideas. My next step is probably to try the agent pull,
>> but I would really like to understand what is going on here.
>> Connection to the SSH daemon (sshd) on the target host failed with the
>> following error : Too many authentication failures
>>
>> Connection to the SSH daemon (sshd) on the target host failed with the
>> following error : Too many authentication failures
>>
>> --
>> Andrew W. Kerber
>>
>> 'If at first you dont succeed, dont take up skydiving.'
>>
>

-- 
Andrew W. Kerber

'If at first you dont succeed, dont take up skydiving.'

--
http://www.freelists.org/webpage/oracle-l

Received on Thu Apr 15 2021 - 16:43:36 CEST

This message: [ Message body ]
Next message: Jeff Chirco: "in-memory option - worth it?"
In reply to Chris Taylor: "Re: SSH error deploying agent in OEM"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message