cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted

Solaris credentials set passwords not working over SSH

Hello,

I am having an issue with the scanning of some Solaris 10 devices via credentials using a Password over SSH, they use to work fine in 6.8 but since we have updated to 7.0 the scans seem to be ignoring the passwords and trying to use a cert that is not there.  I have rechecked the cred’s used and they are correct and allow me to log in to the devices directly via Putty and they have the need permission set, but when I look at the report under the section ‘Unix Hosts Access Report’ it just shows no access and that the protocol is set to SSHv1, with the credential type as certificate.

The credential set was configured with a default shell, but I have also set the cred’s as individual host shells but all to no avail, so any help would be good. 

3 Replies
Highlighted

Re: Solaris credentials set passwords not working over SSH

Hi vistorm,

when configuring the scan in Settings=>Credentials, under Credential Sets check " trust unknown remote-shell targets" option. If you don't use certificates this is the way to avoid your problem. Try this I think it'll work fine.

Regards,

JR

on 06/09/12 10:56:51 ART
Highlighted

Re: Solaris credentials set passwords not working over SSH

Hi JR,

Thanks for the reply but I already had the  " trust unknown remote-shell targets" option ticked.  Like I said it use to work with 6.8 but since the update to 7.0 is stoped working for us.

Highlighted
Level 13
Report Inappropriate Content
Message 4 of 4

Re: Solaris credentials set passwords not working over SSH

HI Vistorm,

did you move the intallation?  it might be that the certificates got messed up.  Best way to find out the problem is to turn on verbose SSH logging:

HKEY_LOCAL_MACHINE]\SOFTWARE\Foundstone\Foundscan\Tweaks] (for 32-bit host) or

[HKEY_LOCAL_MACHINE]\SOFTWARE\Wow6432Node\Foundstone\Foundscan\Tweaks]  (for 64-bit host)

** if the key "Tweaks" doesn't exist, create it. **

LogShell DWORD Value 'ff'

rescan and examine the logs... If you're still having issues get an SR opened / attach the log and PM me the SR #.  I'm happy to have a look.

-Cathy

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community