can no longer SSH

Started by jmmartj, October 12, 2023, 10:43:45 PM

Previous topic - Next topic
Print
Go Down Pages1 2
User actions
October 12, 2023, 10:43:45 PM
Hi all,

   Is there a definitive document/steps, regarding SSH'nig into OPN?  I have scoured online and have come up empty regarding any steps out there.  Tried creating new user, new groups, logging in as admin/root, changing shells, certs, etc.  It used to work just fine earlier this year.  Any help would be highly appreciated.  Thank you!

~jm
October 12, 2023, 10:52:12 PM #1
There is, the part of the documentation that says "Enable a secure shell service" ;)
https://docs.opnsense.org/manual/settingsmenu.html
What happens when you attempt to ssh into it?
October 12, 2023, 10:56:43 PM #2
Definitely did that!   :)

I get 'access denied'...
October 12, 2023, 10:59:32 PM #3
Ok, then the ssh server is enabled and answering back.
Then it could be wrong password. Is it for root?
October 12, 2023, 11:06:35 PM #4
Not root.
Usually would try just my 'admin' account.
As mentioned, tried to create a new account, but still no dice.

At least it's still functional/pingable at this time.
October 12, 2023, 11:13:32 PM #5
Check if the user's shell really exists. IIRC bash was removed from the standard OPNsense installation.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
October 12, 2023, 11:21:01 PM #6
I tried using 'csh' but no go, still 'access denied'
Attempted using putty with 'ssh admin@192.168.1.1' & only 'admin@192.168.1.1' for example.

When you say checking if the user's shell really exists, could you elaborate, please?

October 12, 2023, 11:29:58 PM #7
system > users > Login shell
October 12, 2023, 11:34:06 PM #8
Went to (sorry for CAPS): 
SYSTEM: ACCESS: USERS

admin user's Login shell is '/bin/csh'
October 12, 2023, 11:36:19 PM #9
that's where I meant :)
Could you try changing to another shell and try again?
October 12, 2023, 11:49:44 PM #10
Tried all four, but could not get it to work.

I'm wondering if it's something really basic..?

Tried admin@IP & ssh admin@IP, fyi.
October 12, 2023, 11:54:51 PM #11
Those are ways to get to the same thing, the ssh server, which is responding. Do you have another user for which ssh works ok?
October 12, 2023, 11:57:30 PM #12
The only other time I was able to get in, was with my admin account (non-root).  I've tried root, but that did not work.  I'm a bit perplexed!
October 13, 2023, 12:00:43 AM #13
admin maps to the root account. If you can then try to navigate to /bin and verify the shells are there.
October 13, 2023, 12:11:36 AM #14
I'm just plain stuck.   :'(
Print
Go Up Pages1 2
User actions