Re: rac user equivalence

  • From: John Smith <john40855@xxxxxxxxx>
  • To: Matthew Zito <mzito@xxxxxxxxxxx>
  • Date: Thu, 8 Apr 2010 08:05:17 -0500

This shows in /var/log/secure.:

Apr  8 05:41:17 rac2 sshd[8421]: pam_access(sshd:account): access denied for
user `oracle' from `rac1'
Apr  8 05:41:17 rac2 sshd[8421]: Failed password for oracle from 192.268.2.1
port 17143 ssh2
Apr  8 05:41:17 rac2 sshd[8422]: fatal: Access denied for user oracle by PAM
account configuration

On Wed, Apr 7, 2010 at 8:34 PM, Matthew Zito <mzito@xxxxxxxxxxx> wrote:

> Also, maybe one of your nodes has the user shell as sbin/nologin?  Or has
> the account with no password and pam is preventing a login?
>
> An strafe of your sshd process will give you some useful data.
>
> Matt
>
>
>
> On Apr 7, 2010, at 9:30 PM, "Bobak, Mark" <Mark.Bobak@xxxxxxxxxxxx> wrote:
>
>  Ugh, it’s 9:15pm, and I’m just now heading home, so, brain is a bit
> fried.
>
>
>
> First, I don’t suppose you’re installing 11gR2 Clusterware?  If you are,
> there’s a “SSH Connectivity” button that you click, and Oracle will set
> everything up for you.
>
>
>
> Otherwise, check the log files.  Anything in /var/log/secure?
>
>
>
> Try starting sshd in the foreground with the ‘-d’ option to turn on
> debugging, and then attempt a login.
>
>
>
> Hope that helps,
>
>
>
> -Mark
>
>
>
> *From:* oracle-l-bounce@xxxxxxxxxxxxx [mailto:
> oracle-l-bounce@xxxxxxxxxxxxx] *On Behalf Of *John Smith
> *Sent:* Wednesday, April 07, 2010 7:07 PM
> *To:* <oracle-l@xxxxxxxxxxxxx>oracle-l@xxxxxxxxxxxxx
> *Subject:* rac user equivalence
>
>
>
> Not precisely oracle, but related.  Trying to set up user equivalence on
> redhat 5.  When I ssh from node 2 to node 1, connecting as oracle, it works
> fine, no problems.
>
> But when I ssh from node 1 to node 2 as oracle, it immediately closes the
> connection after entering the password.  This happens no matter what user id
> I connect from to the oracle account.
>
> I can ssh to other accounts on rac2, but not the oracle account.
>
> ssh_config and sshd_config are identical, as are hosts.allow and
> hosts.deny.  Anyone have any ideas?
>
> [root@rac2 ssh]# ssh oracle@rac1
> oracle@rac1's password:
> Last login: Wed Apr  7 15:48:24 2010 from rac2
> [oracle@rac1 ~]$
>
> [oracle@rac1 ~]$ ssh oracle@rac2
> oracle@rac2's password:
> Connection closed by 192.168.2.223
>
> [root@rac1 ~]$ ssh oracle@rac2
> oracle@rac2's password:
> Connection closed by 192.168.2.223
>
> [root@rac1 ~]$ ssh johns@rac2
> johns@rac2's password:
> [johns@rac2 ~]$
>
>

Other related posts:

  1. Home
  2. oracle-l
  3. Archive
  4. 04-2010