Can not get key exchange to work

help-cfengine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Can not get key exchange to work

From:	David Cress
Subject:	Can not get key exchange to work
Date:	Fri, 06 Feb 2004 10:33:00 -0500
User-agent:	Mozilla/5.0 (X11; U; SunOS sun4u; en-US; rv:1.6) Gecko/20040116

I have two machines I'm trying to setup for development, sunman is the cfengineserver, itsidev71 is the client. I've created keys for both machines using thecfkeys command. I've started cfservd on sunman, and it's listening on 5308. Iattached the output from 'cfagent -d2' run on itsidev71 as well as the mycfservd.conf file.

Also, does anyone no the format for the cfrun.hosts file? I can not find aspecification fo this anywhere.



---------- cfagent ----------
cfagent -d : Debugging output enabled.
LogDirectory = /var/cfengine
Loaded /var/cfengine/ppkeys/localhost.priv
Loaded /var/cfengine/ppkeys/localhost.pub
Checksum database is /var/cfengine/checksum.db
Job start time set to Fri Feb  6 10:22:05 2004

New server connection...
Checking copy from sunman.turner.com:/master/inputs to /var/cfengine/inputs
Opening server connnection to sunman.turner.com
Connect to sunman.turner.com = 10.189.225.94, port h=5308
IPV4 address
sockaddr_ntop(10.165.131.135)
Identifying this agent as 10.165.131.135 i.e. itsidev71.turner.com, with 
signature 0
SENT:::CAUTH 10.165.131.135 itsidev71.turner.com root 0
Transaction Send[t 48][Packed text]
Attempting to send 56 bytes
SendSocketStream, sent 56
KeyAuthentication()
ChecksumString(m)
Havekey(root-10.189.225.94)
Did not have key root-10.189.225.94
Transaction Send[t 61][Packed text]
Attempting to send 69 bytes
SendSocketStream, sent 69
Modulus (2048 bit):

Exponent: 35 (0x23)
Transaction Send[t 261][Packed text]
Attempting to send 269 bytes
SendSocketStream, sent 269
Transaction Send[t 5][Packed text]
Attempting to send 13 bytes
SendSocketStream, sent 13
RecvSocketStream(8)
    (Concatenated 8 from stream)
Transaction Receive [t 39][]
RecvSocketStream(39)
    (Concatenated 39 from stream)
cfengine:: BAD: key could not be accepted on trust
cfengine:: Authentication dialogue with sunman.turner.com failed
Closing current connection
cfengine:: Unable to establish connection with sunman.turner.com
Closing current connection


---------- cfservd.conf ----------
control:
        domain = ( turner.com )
        cfrunCommand = ( "/var/cfengine/bin/cfagent" )
        IfElapsed = ( 1 )
        ExpireAfter = ( 15 )
        MaxConnections = ( 50 )
        MultipleConnections = ( true )
        AllowMultipleConnectionsFrom = ( itsidev71 sunman )
        TrustKeysFrom = ( itsidev71 sunman )
        AllowUsers = ( root )

grant:
        /master/inputs  *.turner.com
        cfrunCommand    *.turner.com

--
David Cress
Lead Engineer
CNN Internet Technologies
http://www.cnn.com
--------------------
(404) 878-1921

What exists, exists; what is, is.

[Prev in Thread]

Current Thread

[Next in Thread]

Can not get key exchange to work, David Cress <=

Prev by Date: Re: Partly fixed: Re: Still no e-mail reports
Next by Date: syncing files....
Previous by thread: editfiles / miscmounts question
Next by thread: syncing files....
Index(es):
- Date
- Thread