This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

SSH - Keyboard Interactive Authentication

KevinA-REJIS
Champion Sweeper III

‎12-04-2019 05:29 PM

We have several Dell PowerEdge servers with iDRAC connections. We've previously been able to scan them with SSH credentials, but now we're experiencing a problem.

We recently updated the drivers/firmware on the servers, including iDRAC. Following this, Lansweeper has been unable to scan iDRAC (seems limited to iDRAC8, version 2.70.70.70), saying it cannot connect to SSH with the supplied credentials. After doing some digging, I found in the release notes for that iDRAC version that keyboard interactive authentication has been enabled in its SSH server, requiring both password and keyboard to log in (confirmed when trying to connect with PuTTY).

Is there any way around this?



Link to release notes:

https://topics-cdn.dell.com/pdf/idracv2_70rn_en-us.pdf
Labels:
12 REPLIES 12
grimstar
Champion Sweeper II

‎12-06-2019 04:03 PM

Interesting. Do you happen to use a vulnerability scanner as well? Just curious to know if that is still able to scan successfully.

The fact that you posted this may have saved me a troubleshooting headache somewhere down the line when I inevitably would add our iDRAC credentials and find that it wasn't working.
0 Kudos
KevinA-REJIS
Champion Sweeper III
In response to grimstar

‎12-06-2019 05:22 PM

Esben.D wrote:
Is there no way to turn off this feature?

I'm not sure how there would be a way to work around it other than to try and turn off that functionality at the moment.

What I can do is forward this to the right people so we can take a look at it to see what we can do. So thanks for bringing this up!


I looked through the documentation for that iDRAC firmware level but didn't see anything. I created a topic on Dell's support forums to see if it's possible.



RKCar wrote:
Interesting. Do you happen to use a vulnerability scanner as well? Just curious to know if that is still able to scan successfully.

The fact that you posted this may have saved me a troubleshooting headache somewhere down the line when I inevitably would add our iDRAC credentials and find that it wasn't working.


We do have an AlienVault vulnerability scanner, but it's managed by our LAN/WAN team so I don't know if it's still able to scan.
0 Kudos
Esben_D
Lansweeper Employee
Lansweeper Employee

‎12-06-2019 11:48 AM

Is there no way to turn off this feature?

I'm not sure how there would be a way to work around it other than to try and turn off that functionality at the moment.

What I can do is forward this to the right people so we can take a look at it to see what we can do. So thanks for bringing this up!
0 Kudos

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now