Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 4 subscribers
  • Views 10822 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unable to ssh to standby UTM node

Dennis Lin

Hi guys,

 

I'm new to UTMs. I have 2x UTM nodes configured in HA active/standby mode. Both UTMs are hosted in vCenter and I can console into both nodes using the same crendentials of username"loginuser".

 

However, the problem is:

ssh as "loginuser" from the standby node to active node is successful. 

But

ssh as "loginuser" from the active node to standby node has failed. Error is "permission denied". 

 

In the webAdmin - System Settings - Shell Access - Authentication is "Allow password authentication", Allow root login is "No root access". As far as I understand, I should be able to ssh to both nodes using the same credentials of "loginuser" given both nodes are configured in HA mode. I've attempted to reset root and loginusers password in webAdmins several times but have no luck. 

 

Any suggestions? 

 

Cheers,

Dennis 



This thread was automatically locked due to age.
Parents
  • 0

    Hi Dennis and welcome to the UTM Community!

    You don't need to make it that difficult.  Download putty and puttygen and generate an RSA key for yourself.  Configure 'Shell Access' to allow root access with SSH and add your public key to 'Authorized Keys for root'.  Once you've configured putty to access the Master node and logged in as root, use ha_utils ssh to access the current Slave node.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Thanks Bob,

     

    Understood that root access with ssh key can be a way head however I would prefer not to modify the current ssh settings and keep it as "disable root login and use password authentication". 

    After I logged in as "loginuser" on the master node, I used ha_utlis ssh to access the current slave node and got the permission denied. 

    <M> loginuser@utm01:/home/login > ha_utils ssh

    Connecting to slave x.x.x.x
    loginuser@x.x.x.x's password:
    Permission denied, please try again.

    Just wondering whether or not ssh access to the slave node is prohibited by default? Is there a way to change it?

     

    Cheers,

     

    Dennis

Reply
  • 0 in reply to BAlfson

    Thanks Bob,

     

    Understood that root access with ssh key can be a way head however I would prefer not to modify the current ssh settings and keep it as "disable root login and use password authentication". 

    After I logged in as "loginuser" on the master node, I used ha_utlis ssh to access the current slave node and got the permission denied. 

    <M> loginuser@utm01:/home/login > ha_utils ssh

    Connecting to slave x.x.x.x
    loginuser@x.x.x.x's password:
    Permission denied, please try again.

    Just wondering whether or not ssh access to the slave node is prohibited by default? Is there a way to change it?

     

    Cheers,

     

    Dennis

Children
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML