<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base

SSH to OAG Management Console Failing with Error: "Received disconnect from <OAG_IP> port 22:2: Too many authentication failures Disconnected from <OAG_IP> port 22"

Last Updated:

Okta Classic Engine
Access Gateway
Okta Identity Engine

Overview

When attempting to SSH to the OAG management console, the access fails with the following SSH error:

 

Received disconnect from <OAG_IP> port 22:2: Too many authentication failures Disconnected from <OAG_IP> port 22

 

Applies To

  • Okta Access Gateway (OAG)

Cause

This error indicates that the SSH client, especially when using an ssh-agent, might be offering numerous SSH keys to the server in an attempt to authenticate, and the number of keys offered exceeds the server's MaxAuthTries limit before the correct key is presented (or before a password prompt is given).

Solution

Login with the following command:

 

ssh -o IdentitiesOnly=yes oag-mgmt@<OAG_IP>

 

The IdentitiesOnly=yes option ensures that only the identities explicitly configured are offered, ignoring other keys.

Recommended content

Still looking for help?
Loading
Okta Support - SSH to OAG Management Console Failing with Error: "Received disconnect from <OAG_IP> port 22:2: Too many authentication failures Disconnected from <OAG_IP> port 22"