Unable to SSH into Windows Domain server using Domain User #1823
Comments
|
@I1eoThe0ne - Can you share the output of "whoami /user" on cmd.exe. 4216 2021-06-30 18:00:48.875 debug1: generate_s4u_user_token: LsaLogonUser() failed. User 'ourDomain\myDomainUser' Status: 0xC000006D SubStatus 0. |
|
Hi, Even I am also unable to configure OpenSSH service using domain account. Do you know how to run openssh using service account and how to change root/home folder for ssh? |
@bagajjal the open-ssh-server is started as a service (services.msc) I did start it once as user ourDomain\myDomainUser - from the terminal - then it works. But in production I can not start the service using ourDomain.
|
|
@I1eoThe0ne - How did you install the openssh server? Have you made any installation changes? |
Solution The computer did not have the rights to reads the desired users Properties - therefore ssh failed with the error message mentioned above. Giving the Computer permissions to read the properties of the user (ourDomain\myDomainUser) solved the issue - Login is successful :) For more details view Unable to SSH into Windows Domain server using Domain User |
|
I know this is closed, but is there any kind of list of properties that the computer account needs read access to? I have a fairly locked down environment, and I would like to scope this down as much as possible vs. just giving all servers with OpenSSH installed wide open read access to all user accounts. |
"OpenSSH for Windows" version
OpenSSH_for_Windows_8.1p1, LibreSSL 2.9.2Server OperatingSystem
Windows Server 2019 StandardClient OperatingSystem
Windows 10
What is failing
SSH Connection does not esablish - it does not even ask for password or key-files
Expected output
successfull connection
Actual output
Server : fatal: ga_init, unable to resolve user ourDomain\myDomainUser
Client: Connection reset by 10.70.108.76 port 22
client.log
server.log
The text was updated successfully, but these errors were encountered: