Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 2550 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ssh bookmark using private/pub keys

Damon Gladbach

I am trying to setup a bookmark for clientless access using ssh private/pub key for authentication.   The host is Ubuntu 18.04.

When I try to connect to the host, I get the error:  No ECDSA host key is known for 'ip' and you have requested strict checking.   Host key verification failed.

I can't find any reference to this searching.  What am I missing?

I am using the ssh_host_rsa  priv/pub keys.

Thanks



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Vishal_R

    I had seen this post and it wasn't addressing what I was actually trying to do.

    I was hoping to use just private/public key that the VM was used during setup, and login with just those credentials.   I didn't want to have to connect to the VM and setup a password for the user, and still use the public key.

    VM was created on an Openstack cloud, which is installed with the users keypair (tried to use in the bookmark).  The idea is that you can use just that keypair to login to the VM.  (as from other ssh clients)

    Not sure why it doesn't do that with the sophos ssh public/private key authentication method, but I have gotten priv/pub auth to work for a sftp bookmark.

  • 0 in reply to Damon Gladbach

    Also, even with the ssh option with password/public key, I get a lot of SSH host key changed errors.   Seems like a 'known_host' issue with an invalid key for that IP, but from looking at the /tmp/clientless folder on the sophos gw, it seems like each time a new session is created a new one is created specific to that session.   Even tried removing all the old sessions there, but still doesn't help.   Is that data also stored somewhere else?

Unfiltered HTML