Topic "WINSCP and Pagent Authentication"

Author Message
tohu
[View user's profile]

Joined: 2009-09-15
Posts: 2
Hello

We use WINSCP 4.21 and the script language to transfer files to/from remote SFTP servers, most of our connections have been made by using password authentication, we are now going to use public key authentication and PuTTY Pageant mixed with password authentication, we noticed some problem when trying to connect to a remote server using only password authentication, the server answered with a disconnect message and did not allow the program to fallback to password authentication.

Question: is there a way to bypass the Attempt to use Authentication Using Pagent in the script language? eg. we only want to use pageant and public key authentication for some of our connections.

SFTP, errors exist, please check the event view
Searching for host...
Connecting to host...
Authenticating...
Using username "xxxx".
Server sent disconnect message
type 11 (by application):
""
Authentication log (see session log for details):
Using username "xxxx".
Authentication failed.
batch on
confirm off
No session.
transfer ascii
No session.
No session.
No session.
Advertisements
martin
[View user's profile]
Site Admin
Joined: 2002-12-10
Posts: 24553
Location: Prague, Czechia
Please read FAQ. If that does not help, come back.
_________________
Martin Prikryl
tohu
[View user's profile]

Joined: 2009-09-15
Posts: 2
I am sorry but I did not find anything on this in the FAQ, the only thing was to store the key unprotected (without an passphrase) but if we do that it would be no safer than using a password for athentication.

2009-09-15 12:27:14.572 --------------------------------------------------------------------------
2009-09-15 12:27:14.572 WinSCP Version 4.2.1 (Build 428) (OS 5.2.3790 Service Pack 2)
2009-09-15 12:27:14.572 Login time: den 15 september 2009 12:27:14
2009-09-15 12:27:14.572 --------------------------------------------------------------------------
2009-09-15 12:27:14.572 Session name: xxxxx@xxxxx.xxxxx.xx
2009-09-15 12:27:14.572 Host name: xxxxx.xxxxx.xx (Port: 22)
2009-09-15 12:27:14.572 User name: xxxxx (Password: Yes, Key file: No)
2009-09-15 12:27:14.572 Tunnel: No
2009-09-15 12:27:14.572 Transfer Protocol: SFTP (SCP)
2009-09-15 12:27:14.572 Ping type: -, Ping interval: 30 sec; Timeout: 15 sec
2009-09-15 12:27:14.572 Proxy: none
2009-09-15 12:27:14.572 SSH protocol version: 2; Compression: No
2009-09-15 12:27:14.572 Bypass authentication: No
2009-09-15 12:27:14.572 Try agent: Yes; Agent forwarding: No; TIS/CryptoCard: No; KI: Yes; GSSAPI: No
2009-09-15 12:27:14.572 Ciphers: aes,blowfish,3des,WARN,arcfour,des; Ssh2DES: No
2009-09-15 12:27:14.572 SSH Bugs: -,-,-,-,-,-,-,-,-
2009-09-15 12:27:14.572 SFTP Bugs: -,-
2009-09-15 12:27:14.572 Return code variable: Autodetect; Lookup user groups: Yes
2009-09-15 12:27:14.572 Shell: default, EOL: 0
2009-09-15 12:27:14.572 Clear aliases: Yes, Unset nat.vars: Yes, Resolve symlinks: Yes
2009-09-15 12:27:14.572 LS: ls -la, Ign LS warn: Yes, Scp1 Comp: No
2009-09-15 12:27:14.572 Local directory: default, Remote directory: home, Update: No, Cache: Yes
2009-09-15 12:27:14.572 Cache directory changes: Yes, Permanent: Yes
2009-09-15 12:27:14.572 DST mode: 1
2009-09-15 12:27:14.572 --------------------------------------------------------------------------
2009-09-15 12:27:14.572 Looking up host "xxxxx.xxxxx.xx"
2009-09-15 12:27:14.572 Connecting to nnn.nnn.nnn.nnn port 22
2009-09-15 12:27:18.307 Server version: SSH-2.0-1.82 sshlib: sshlibSrSshServer 1.00
2009-09-15 12:27:18.307 Using SSH protocol version 2
2009-09-15 12:27:18.307 We claim version: SSH-2.0-WinSCP_release_4.2.1
2009-09-15 12:27:18.307 Doing Diffie-Hellman group exchange
2009-09-15 12:27:18.541 Doing Diffie-Hellman key exchange with hash SHA-1
2009-09-15 12:27:18.932 Host key fingerprint is:
2009-09-15 12:27:18.932 ssh-rsa 4096 xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx
2009-09-15 12:27:18.932 Initialised AES-256 CBC client->server encryption
2009-09-15 12:27:18.932 Initialised HMAC-SHA1 client->server MAC algorithm
2009-09-15 12:27:18.932 Initialised AES-256 CBC server->client encryption
2009-09-15 12:27:18.932 Initialised HMAC-SHA1 server->client MAC algorithm
2009-09-15 12:27:19.072 Pageant is running. Requesting keys.
2009-09-15 12:27:19.088 Pageant has 1 SSH-2 keys
! 2009-09-15 12:27:19.088 Using username "xxxxx".
2009-09-15 12:27:19.088 Trying Pageant key #0
2009-09-15 12:27:19.385 Received disconnect message (by application)
2009-09-15 12:27:19.385 Disconnection message text:
2009-09-15 12:27:19.385 Server sent disconnect message
2009-09-15 12:27:19.385 type 11 (by application):
2009-09-15 12:27:19.385 ""
martin
[View user's profile]
Site Admin
Joined: 2002-12-10
Posts: 24553
Location: Prague, Czechia
tohu wrote:
I am sorry but I did not find anything on this in the FAQ, the only thing was to store the key unprotected (without an passphrase) but if we do that it would be no safer than using a password for athentication.

I do not think so and I've explained that in the FAQ. If you do not agree, well, I cannot help you then.
_________________
Martin Prikryl
Advertisements

You can post new topics in this forum






Search Site

What is WinSCP?

It is award-winning SFTP client, SCP client, FTPS client and FTP client integrated into one software program for file transfer to FTP server or secure SFTP server. [More]

And it's free!

Donate

About donations

$9   $19   $49   $99

About donations

Recommend

WinSCP Privacy Policy

WinSCP License