otgmz (otgmz) asked a question.
Hi all,
I'm currently trying to setup a PAM env for a customer. I'm using 2 LUbuntu VMs, one as the restricted sever, one as a Client.
I added both to the Scaleft Interface.
I'm also able to see all users assigned to the Scaleft project on the "server" VM.
When trying to connect with the command
sft ssh PAM-server
I get this error message:
```error: ssh: handshake failed: ssh: unable to authenticate, attempted methods [none publickey], no supported methods remain
kex_exchange_identification: Connection closed by remote host
Connection closed by UNKNOWN port 65535```
To setup the Client and Sever, I followed the "Okta Advanced Server Access" Curriculum in the Training portal and the Doku: https://help.okta.com/asa/en-us/Content/Topics/Adv_Server_Access/docs/asa-overview.htm?tocpath=_____2
Is there something I need to install first?
Do I maybe need the Okta ASA Gateway somewhere?
Thanks
Jonas
SOLVED:
For servers running Ubuntu 20.04 or later, you have to allow certificate authorities (CAs) to use the ssh-rsa algorithm to sign certificates. To do this, add the following line to your OpenSSH daemon file (which is either /etc/ssh/sshd_config or a drop-in file under /etc/ssh/sshd_config.d/):
CASignatureAlgorithms ssh-rsa
Thank you so much! this helped me a lot today.