Im looking for a way to do remote connects using authorized_keys.
I have looked up the mailing-list but have not found any further information.
Point is .. the client does not provide a private key and is itself already access via key forwarding.
I have tried to ignore the addIdentity (addIdentity provides private-key), but it does not work for me.
Any idea ???
I have attached my log:
INFO: Connecting to app001 port 22
INFO: Connection established
INFO: Remote version string: SSH-2.0-OpenSSH_4.3p2 Debian-9etch2
INFO: Local version string: SSH-2.0-JSCH-0.1.38
INFO: CheckCiphers: aes256-cbc,aes192-cbc,aes128-cbc
INFO: aes256-cbc is not available.
INFO: aes192-cbc is not available.
INFO: SSH_MSG_KEXINIT sent
INFO: SSH_MSG_KEXINIT received
INFO: kex: server->client aes128-cbc hmac-md5 none
INFO: kex: client->server aes128-cbc hmac-md5 none
INFO: SSH_MSG_KEXDH_INIT sent
INFO: expecting SSH_MSG_KEXDH_REPLY
INFO: ssh_rsa_verify: signature true
WARN: Permanently added 'app001' (RSA) to the list of known hosts.
INFO: SSH_MSG_NEWKEYS sent
INFO: SSH_MSG_NEWKEYS received
INFO: SSH_MSG_SERVICE_REQUEST sent
INFO: SSH_MSG_SERVICE_ACCEPT received
INFO: Authentications that can continue: publickey,keyboard-interactive,password
INFO: Next authentication method: publickey
INFO: Authentications that can continue: password
INFO: Next authentication method: password
INFO: Disconnecting from app001 port 22
com.jcraft.jsch.JSchException: Auth cancel
On the target server (app001) my public key is stored in ~/.ssh/authorized_keys
+-From: thorsten maus <loumaus@...> ------
|_Date: Wed, 17 Sep 2008 05:13:08 -0700 (PDT) __
|Point is .. the client does not provide a private key and
|is itself already access via key forwarding.
|I have tried to ignore the addIdentity (addIdentity provides private-key),
|but it does not work for me.
It seems you need the public-key authentication with ssh-agent.
On Unices, the communication between ssh-agent and ssh client
will be done on Unix domain socket. Unfortunately, pure java program
can not get accesses to the Unix domain socket and jsch can not work
1-14-20 HONCHO AOBA-KU,
SENDAI, MIYAGI 980-0014 Japan.