24
10
When I try to ssh this in a terminal: ssh username@sub.domain.com
I get the following error:
Connection closed by 69.163.227.82
When I use putty, I am able to connect to the server. Why is this happening, and how can I get this to work in a terminal?
ssh -v username@sub.domain.com
OpenSSH_6.0p1 (CentrifyDC build 5.1.0-472) (CentrifyDC build 5.1.0-472), OpenSSL 0.9.8w 23 Apr 2012
debug1: Reading configuration data /etc/centrifydc/ssh/ssh_config
debug1: /etc/centrifydc/ssh/ssh_config line 52: Applying options for *
debug1: Connecting to sub.domain.com [69.163.227.82] port 22.
debug1: Connection established.
debug1: identity file /home/ryannaddy/.ssh/id_rsa type -1
debug1: identity file /home/ryannaddy/.ssh/id_rsa-cert type -1
debug1: identity file /home/ryannaddy/.ssh/id_dsa type -1
debug1: identity file /home/ryannaddy/.ssh/id_dsa-cert type -1
debug1: identity file /home/ryannaddy/.ssh/id_ecdsa type -1
debug1: identity file /home/ryannaddy/.ssh/id_ecdsa-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.1p1 Debian-5
debug1: match: OpenSSH_5.1p1 Debian-5 pat OpenSSH_5*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.0
debug1: Miscellaneous failure
Cannot resolve network address for KDC in requested realm
debug1: Miscellaneous failure
Cannot resolve network address for KDC in requested realm
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Connection closed by 69.163.227.82
What does
ssh -v username@sub.domain.com
show? – James Sneeringer – 2013-03-20T13:58:01.503I updated the main question. Also the server should ask for a password, there are no ssh keys required to login. – Get Off My Lawn – 2013-03-20T14:10:11.867
Did you change any settings from default in PuTTY? – Kruug – 2013-03-20T14:15:44.803
Also, have you tried
user@domain.com
? Leave out thesub
. – Kruug – 2013-03-20T14:16:21.777@Kruug all putty settings were left as the defaults, and yes I have tried a few combinations:
domain.com
,subdomain.com
,user@domain.com
,user@sub.domain.com
,69.163.227.82
,user@69.163.227.82
– Get Off My Lawn – 2013-03-20T14:24:02.137Try
ssh -vvv user@69.163.227.82
. That should give more detailed output. – Kruug – 2013-03-20T14:29:01.9001You're using Centrify's build of OpenSSH, which implies your system is AD-integrated. Active Directory uses Kerberos, and OpenSSH is complaining that it can't find the Kerberos KDC, so it's bailing out. What does your
/etc/krb5.conf
look like? – James Sneeringer – 2013-03-20T14:33:10.670@JamesSneeringer it has work related stuff in it is that safe to post? – Get Off My Lawn – 2013-03-20T14:58:51.333
@Ryan If you don't know, better to err on the side of caution and not post. Look in it for places where your realm is specified. Make sure all of the KDC's specified for your realm resolve, and many sure their IP addresses properly reverse-resolve as well. This example krb5.conf may help.
– James Sneeringer – 2013-03-20T15:08:27.313