Ssh on embeded



  • I think this only applies to embeded as I have not seen it on my full install boxes

    When I activate ssh on embeded with an ssl key and password the ssl key is rejected and the password for the webgui user admin is not accepted.
    To login as admin I have to use the default password pfsense and once logged in I get an error that /home/admin doesn't exit (which it doesn't)

    once I create the /home/admin/.ssh/authorized_keys file and add the key it works fine.

    I am guessing this is a bug with not mounting the file system rw before trying to create the dirs and key file



  • Thanks, please test next snapshot.



  • Grabbed 2.0-ALPHA-ALPHA built on Wed Nov 12 13:31:08 EST 2008 FreeBSD 7.1-PRERELEASE
    Still not quite there same errors as last time. Tried re saving all the user and ssh stuff but with no luck.
    Still can login with default pass and get the dir missing error.



  • Please show the updated errors.  Thanks



  • login as: admin
    Server refused our key <–-- system trying key entered in useradmin for the admin user
    Using keyboard-interactive authentication.
    Password: <– I entered the WebGUI password that works on the web gui
    Access denied
    Using keyboard-interactive authentication.
    Password: <– I used the "pfsense" default password
    Last login: Wed Nov 12 19:40:49 2008
    Copyright © 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994
            The Regents of the University of California.  All rights reserved.

    Could not chdir to home directory /home/admin: No such file or directory <– missing dir

    *** Welcome to pfSense 2.0-ALPHA-ALPHA-embedded on pfsense ***

    LAN(LAN)*                ->  xl0    ->      192.168.1.2
      WAN(WAN)*                ->  xl1    ->      84.92.249.42(PPPoE)
      OPT1(VLAN103)            ->  vlan0  ->      10.0.0.1
      OPT2(VLAN102)            ->  vlan1  ->      10.0.1.1

    pfSense console setup


    0)  Logout (SSH only)
    1)  Assign Interfaces
    2)  Set interface(s) IP address
    3)  Reset webConfigurator password
    4)  Reset to factory defaults
    5)  Reboot system
    6)  Halt system
    7)  Ping host
    8)  Shell
    9)  PFtop
    10)  Filter Logs
    11)  Restart webConfigurator
    12)  pfSense PHP shell
    13)  Upgrade from console
    14)  Disable Secure Shell (sshd)

    Enter an option:

    There are no errors from the GUI or syslogs that give away a problem there



  • Try the next snap.  If it fails edit the user again in the user manager and click save.



  • Sorry still not there.

    I have tried saving all the the ssh and user and group bits and disabling ssh and re enabling it and removing and adding the shell rights for admin but still the changes arn't being saved. :-(

    Sorry



  • Think I finally tracked this one down..

    pfSense:/home/admin/.ssh#  ls
    authorized_keys



  • 2.0-ALPHA-ALPHA built on Fri Nov 21 12:50:48 EST 2008 FreeBSD 7.1-PRERELEASE

    This is better. I can now login with the user admin and an ssl key.
    But I still can't login with the WebGUI admin password. To login as admin I have to use the default "pfsense" password.

    Also when I login as admin there is no pfsense console menu. The menu files arn't in /home/admin only a .ssh dir.



  • Hi,

    Also when I login as admin there is no pfsense console menu. The menu files arn't in /home/admin only a .ssh dir.

    Just copy .(dot) files from ~root and you're done. It's of course un-official, dirty workaround but quick and works as you want. That's what I always do.

    cheers,



  • @morbus:

    2.0-ALPHA-ALPHA built on Fri Nov 21 12:50:48 EST 2008 FreeBSD 7.1-PRERELEASE
    This is better. I can now login with the user admin and an ssl key.
    But I still can't login with the WebGUI admin password. To login as admin I have to use the default "pfsense" password.

    Did you change the password in the user manager for the admin account?

    @morbus:

    Also when I login as admin there is no pfsense console menu. The menu files arn't in /home/admin only a .ssh dir.

    Fixed, thanks.



  • @sullrich:

    Did you change the password in the user manager for the admin account?

    Yep, I can't use the auto upgrade facility as my CF card is to small. So I image the card, boot and then restore the config. Just to be sure I also opened the admin user in the user manager and re-entered the password for admin and saved it. The saved password works on the WebGUI just not SSH


Log in to reply