i tried logging in via putty.. it is with putty i get the no support auth error.. i can access the GUI of the device but the ssh seems to have broken

thanks for the reply..yea  i changed passauth to yes in the sshd config file post which i was able to get the login prompt but somehow none of the credentials work

O wow...so sounds @Duane_Toler when console access is not available, not too many other options : - (

Andy

Yep, the CPRID hack via SIC is your only remaining option.  You'll have to adapt sk106490 for the commands you need.  This should get you very close:

Assuming you get a clean SSH configuration uploaded via Gaia API put-file, you can move it into place (assuming you uploaded the file to /home/admin):

$CPDIR/bin/cprid_util -server <IP_address_of_Security_Gateway> -verbose rexec -rcmd "mv /home/admin/sshd_config /etc/ssh"

Restart SSHD (Gaia still uses the SysV style scripts, not systemd):

$CPDIR/bin/cprid_util -server <IP_address_of_Security_Gateway> -verbose rexec -rcmd "service sshd restart"

Gaia API is on by default and open to the 'admin' user.  You can use the Ansible module for it, or craft your own method manually.  You can't use SCP or SFTP because SSH is broken.

(Edit: typo)

I will definitely save this process if I ever come into this situation (sure hope not)

Tx Duane!

Andy

i have the GUI access to the device.. i can upload the sshd file via that ? 

Not directly, but you can access the CLI:

Editing a file using vi might be problematic using this method.

Good morning, I'm having the same problem and the TAC came back with some process to resolve this case.

Excellent! Let us know if it helps. If you're able to share the info, please post it here so others can benefit.

Can you send what /etc/ssh/sshd_config file looks like?

Andy

Can you please share the process if it ends up working for you?

Andy

sorry I missed the point, I'm actually asking.

Sounded like you meant TAC had process for it. Anyway, would you mind send content of /etc/ssh/sshd_config?

Andy

another thing, it is accessible via ssh but only with the admin user

I checked lines with PasswordAuthentication and they all shows yes at the end, so thats correct. Wait, you say ONLY admin can log in? How many other users are there? Can you create new user and assign admin privileges and test?

Andy

I checked the lines with PasswordAuthentication and they all show "yes" at the end, so it's correct. - Yes, all the lines with PasswordAuthentication have "yes."

Wait a minute, you're saying ONLY the administrator can log in?

The only user authenticating via SSH is the admin user.

How many other users are there?

10 users.

Can you create a new user, assign administrator privileges, and test?

I've already tested this, created a new one, and added admin permissions, but the error still occurs.

What is the exact error you get? Can you paste it please?

Andy

Attached is the error that occurred when trying to access the manager's ssh

I just found this link about that error. Not sure what ssh app you use, but if its putty, maybe try kitty (another version very similar to putty) or solar putty 4.2.2.0

Andy

PuTTY fatal error: "No supported authentication methods available" - Stack Overflow

It looks like the SSH server is only accepting Public Key authentication (not password).
When you changed the sshd_config, did you restart sshd?

Always forget about that, good point. @Pedro_Costa , just run service sshd restart from expert mode

Andy