Archive for June, 2013

ssh: access denied for user

Issue:
Jun 20 03:18:04 localhost sshd[512]: Failed password for iamid from 10.x.x.1 port 44241 ssh2
Jun 20 03:18:04 localhost sshd[513]: fatal: Access denied for user iamid by PAM account configuration

check /var/log/secure, got above messages.

tips to troubleshooting:

1. /etc/nologin exists or not, if exists, remove it.
2. /etc/security/access.conf, whether your group/user exists in allow list.

if still have issue, turn on DEBUG for sshd.

,

No Comments

ssh_exchange_identification: Connection closed by remote host

What’s wrong with the server ?

debug1: identity file /export/home/intprd/.ssh/id_dsa type 2
ssh_exchange_identification: Connection closed by remote host
Connection closed

if your sshd is busy, you may consider to increase the MaxStartups 10 -> MaxStartups 100, change the value according to your request.

more details you can get by turn debug on for sshd server LogLevel DEBUG

If you got error msg like following from messages/secure logs.
May 30 02:49:14 localhost sshd[19458]: [ID 800047 auth.debug] debug1: drop connection #10
May 30 02:49:15 localhost sshd[19458]: [ID 800047 auth.debug] debug1: drop connection #10

which means you reach MaxStartups 10 now.

No Comments