search

opentelekomcloud / terraform-otc

Terraform integration modules for Open Telekom Cloud
22 stars 19 forks source link

Error while using SSH provisioner #16

Open vinayakbhat24 opened 7 years ago

vinayakbhat24 commented 7 years ago

Hi, I am trying out ssh provisioning through ssh agent. $ eval $(ssh-agent -s) $ ssh-add ~/.ssh/id_rsa

But constantly getting an error ssh: handshake failed: ssh: unable to authenticate, attempted methods [none], no supported methods remain

Crapworks commented 7 years ago

Hi @vinayakbhat24

can you show me the definition of your provisioner? The debug information would be also interesting to see, you can prepend OS_DEBUG=1 TF_LOG=DEBUG to your terraform call the get the debug output.

It is also important to know what operating system you are trying to use the provisioner for.

Cheers, Christian

vinayakbhat24 commented 7 years ago

Hi, I am using the same code as in the github. But using centos latest image with username linux.
In debug mode error is like this: Retryable error: ssh: handshake failed: ssh: no common algorithm for key exchange; client offered:

Best Regards, Vinayak

Crapworks commented 7 years ago

@vinayakbhat24

This is a problem with our CentOS Image. The SSH Daemon currently only supports one Key Exchange Algorithm, which is not supported by Terraform. We are currently investigating the changes that have to be made to make it work, please stand by. If you have the option to use the Ubuntu image, this one is working with the Terraform provisioner.

Cheers, Christian

garloff commented 7 years ago

Hi Christian,

we have somewhat locked down ssh configs in our pub images based on the strict requirements from Telekom's SEC organization. If terraform relies on older, weaker methods, we may be out of luck w.r.t. our pub images. If there are fairly strong methods supported and we have not enabled them, then we can of course go into a discussion with our SEC folks. While being strict, they are not unreasonable ... '

-- Kurt Garloff kurt@garloff.de, Cologne, Germany

Am 20.09.2017 um 16:42 schrieb Christian Eichelmann:

@vinayakbhat24 https://github.com/vinayakbhat24

This is a problem with our CentOS Image. The SSH Daemon currently only supports one Key Exchange Algorithm, which is not supported by Terraform. We are currently investigating the changes that have to be made to make it work, please stand by. If you have the option to use the Ubuntu image, this one is working with the Terraform provisioner.

Cheers, Christian

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/OpenTelekomCloud/terraform-otc/issues/16#issuecomment-330873773, or mute the thread https://github.com/notifications/unsubscribe-auth/ASctEikpI6_EdnHrr0iM5RkSFF0fMT_6ks5skSRagaJpZM4PdvG5.

Crapworks commented 6 years ago

@vinayakbhat24

Just as a heads up: a compatible version of CentOS will be released approximately around October 15th.

Cheers, Christian