ssh : 权限被拒绝 (publickey,gssapi-with-mic) [英] ssh : Permission denied (publickey,gssapi-with-mic)

问题描述

我使用的是 centos 5.9.通过这个 link 安装 gitlab 后 ssh 不工作.在安装 gitlab ssh 之前正常工作.我正在本地使用此服务器和其他服务，例如服务器上安装的 elastix 和 apache、mysql.

出现这个错误:

OpenSSH_6.9p1 Ubuntu-2ubuntu0.1，OpenSSL 1.0.2d 2015 年 7 月 9 日debug1:读取配置数据/etc/ssh/ssh_configdebug1:/etc/ssh/ssh_config 第 19 行:为 * 应用选项调试2:ssh_connect:需要priv 0debug1:连接到 192.168.88.23 [192.168.88.23] 端口 22.debug1:建立连接.调试1:永久设置uid:0/0debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_rsa 类型 -1debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_rsa-cert type -1debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_dsa 类型 -1debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_dsa-cert type -1debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_ecdsa 类型 -1debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_ecdsa-cert type -1debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_ed25519 type -1debug1:key_load_public:没有这样的文件或目录debug1:身份文件/root/.ssh/id_ed25519-cert type -1debug1:为协议 2.0 启用兼容模式debug1:本地版本字符串 SSH-2.0-OpenSSH_6.9p1 Ubuntu-2ubuntu0.1debug1:远程协议版本2.0，远程软件版本OpenSSH_4.3debug1:匹配:OpenSSH_4.3 pat OpenSSH_4* compat 0x00000000debug2:fd 3 设置 O_NONBLOCKdebug1:以root"身份验证 192.168.88.23:22debug1: SSH2_MSG_KEXINIT 已发送debug1:收到 SSH2_MSG_KEXINITdebug2: kex_parse_kexinit: curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1，diffie-hellman-group1-sha1debug2: kex_parse_kexinit: ssh-rsa-cert-v01@openssh.com,ssh-rsa-cert-v00@openssh.com,ssh-rsa,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-dss-cert-v01@openssh.com,ssh-dss-cert-v00@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,ssh-dssdebug2: kex_parse_kexinit: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,arcfour256,arcfour128,aes128-cbc,3des-cbc,河豚-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.sedebug2: kex_parse_kexinit: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,arcfour256,arcfour128,aes128-cbc,3des-cbc,河豚-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.sedebug2: kex_parse_kexinit: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5-etm@openssh.com,hmac-ripemd160-etm@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-96-etm@openssh.com,hmac-md5,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96，hmac-md5-96debug2: kex_parse_kexinit: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5-etm@openssh.com,hmac-ripemd160-etm@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-96-etm@openssh.com,hmac-md5,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96，hmac-md5-96调试2:kex_parse_kexinit:无，zlib@openssh.com，zlib调试2:kex_parse_kexinit:无，zlib@openssh.com，zlib调试2:kex_parse_kexinit:调试2:kex_parse_kexinit:调试2:kex_parse_kexinit:first_kex_follows 0debug2:kex_parse_kexinit:保留 0调试2:kex_parse_kexinit:diffie-hellman-group-exchange-sha1，diffie-hellman-group14-sha1，diffie-hellman-group1-sha1调试2:kex_parse_kexinit:ssh-rsa，ssh-dssdebug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@裂解器变种liu.sedebug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@裂解器变种liu.sedebug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96调试2:kex_parse_kexinit:无，zlib@openssh.com调试2:kex_parse_kexinit:无，zlib@openssh.com调试2:kex_parse_kexinit:调试2:kex_parse_kexinit:调试2:kex_parse_kexinit:first_kex_follows 0debug2:kex_parse_kexinit:保留 0调试1:kex:服务器->客户端aes128-ctr hmac-sha1无调试1:kex:客户端->服务器aes128-ctr hmac-sha1无debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<7680<8192) 已发送debug1:得到 SSH2_MSG_KEX_DH_GEX_GROUPdebug2:位设置:3111/6144debug1: SSH2_MSG_KEX_DH_GEX_INIT 发送debug1:得到 SSH2_MSG_KEX_DH_GEX_REPLYdebug1:服务器主机密钥:ssh-rsa SHA256:7J6JOe94H9PedNKlx6yG/wMy6ZYC8iB74WdOVGDgY7Adebug1:主机 '192.168.88.23' 是已知的并且与 RSA 主机密钥匹配.debug1:在/root/.ssh/known_hosts:1 中找到密钥debug2:位设置:3102/6144debug2:set_newkeys:模式 1debug1: SSH2_MSG_NEWKEYS 已发送debug1:期待 SSH2_MSG_NEWKEYS调试2:set_newkeys:模式0debug1:收到 SSH2_MSG_NEWKEYSdebug1:SSH2_MSG_SERVICE_REQUEST 已发送debug2: service_accept: ssh-userauthdebug1:收到 SSH2_MSG_SERVICE_ACCEPTdebug2: key:/root/.ssh/id_rsa ((nil)),debug2: key:/root/.ssh/id_dsa ((nil)),debug2: key:/root/.ssh/id_ecdsa ((nil)),debug2: key:/root/.ssh/id_ed25519 ((nil)),debug1:可以继续的身份验证:publickey、gssapi-with-micdebug1:下一个身份验证方法:gssapi-with-micdebug1:未指定的 GSS 故障.次要代码可以提供更多信息没有可用的 Kerberos 凭据debug1:未指定的 GSS 故障.次要代码可以提供更多信息没有可用的 Kerberos 凭据debug1:未指定的 GSS 故障.次要代码可以提供更多信息debug1:未指定的 GSS 故障.次要代码可以提供更多信息没有可用的 Kerberos 凭据debug2:我们没有发送数据包，禁用方法debug1:下一个认证方式:publickeydebug1:尝试私钥:/root/.ssh/id_rsadebug1:尝试私钥:/root/.ssh/id_dsadebug1:尝试私钥:/root/.ssh/id_ecdsadebug1:尝试私钥:/root/.ssh/id_ed25519debug2:我们没有发送数据包，禁用方法debug1:没有更多的身份验证方法可以尝试.权限被拒绝(公钥、gssapi-with-mic).

解决方案

我在使用 vagrant 时遇到了同样的问题.所以我试图从我的 Mac 上 ssh 到一个 vagrant box (CentOS 7)

通过修改 /etc/ssh/sshd_config PasswordAuthentication yes 解决了这个问题，然后使用 sudo systemctl restart sshd 重新启动了服务p>

希望这会有所帮助.

i'm use centos 5.9. after installing gitlab by this link ssh not working. before install gitlab ssh correctly working. i'm using this server localy and other services such as elastix and apache,mysql installed on server.

appeare this error :

OpenSSH_6.9p1 Ubuntu-2ubuntu0.1, OpenSSL 1.0.2d 9 Jul 2015
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to 192.168.88.23 [192.168.88.23] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_rsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ed25519-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
                                        debug1: Local version string SSH-2.0-OpenSSH_6.9p1 Ubuntu-2ubuntu0.1
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.3
debug1: match: OpenSSH_4.3 pat OpenSSH_4* compat 0x00000000
debug2: fd 3 setting O_NONBLOCK
debug1: Authenticating to 192.168.88.23:22 as 'root'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa-cert-v01@openssh.com,ssh-rsa-cert-v00@openssh.com,ssh-rsa,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-dss-cert-v01@openssh.com,ssh-dss-cert-v00@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,ssh-dss
debug2: kex_parse_kexinit: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5-etm@openssh.com,hmac-ripemd160-etm@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-96-etm@openssh.com,hmac-md5,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5-etm@openssh.com,hmac-ripemd160-etm@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-96-etm@openssh.com,hmac-md5,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug1: kex: server->client aes128-ctr hmac-sha1 none
debug1: kex: client->server aes128-ctr hmac-sha1 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<7680<8192) sent
debug1: got SSH2_MSG_KEX_DH_GEX_GROUP
debug2: bits set: 3111/6144
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: got SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Server host key: ssh-rsa SHA256:7J6JOe94H9PedNKlx6yG/wMy6ZYC8iB74WdOVGDgY7A
debug1: Host '192.168.88.23' is known and matches the RSA host key.
    debug1: Found key in /root/.ssh/known_hosts:1
debug2: bits set: 3102/6144
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: /root/.ssh/id_rsa ((nil)),
debug2: key: /root/.ssh/id_dsa ((nil)),
debug2: key: /root/.ssh/id_ecdsa ((nil)),
debug2: key: /root/.ssh/id_ed25519 ((nil)),
debug1: Authentications that can continue: publickey,gssapi-with-mic
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure.  Minor code may provide more information
No Kerberos credentials available

debug1: Unspecified GSS failure.  Minor code may provide more information
No Kerberos credentials available

debug1: Unspecified GSS failure.  Minor code may provide more information


debug1: Unspecified GSS failure.  Minor code may provide more information
No Kerberos credentials available

debug2: we did not send a packet, disable method
debug1: Next authentication method: publickey
debug1: Trying private key: /root/.ssh/id_rsa
debug1: Trying private key: /root/.ssh/id_dsa
debug1: Trying private key: /root/.ssh/id_ecdsa
debug1: Trying private key: /root/.ssh/id_ed25519
debug2: we did not send a packet, disable method
debug1: No more authentication methods to try.
Permission denied (publickey,gssapi-with-mic).

解决方案

I had the same issue while using vagrant. So from my Mac I was trying to ssh to a vagrant box (CentOS 7)

Solved it by amending the /etc/ssh/sshd_config PasswordAuthentication yes then re-started the service using sudo systemctl restart sshd

Hope this helps.

这篇关于ssh : 权限被拒绝 (publickey,gssapi-with-mic)的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！