Created on 10-28-2022 01:08 AM Edited on 10-28-2022 01:08 AM By Jean-Philippe_P
Description | This article describes how to proceed when SSH login log show failed with 'ssh_key_invalid' error messages but authentication succeeds. |
Solution |
This issue can occur after upgrading to FortiOS v6.4.10 when uses ssh commands such as 'ssh username@host.nowhere.com'.
To provide guidance on how to collect debug log:
# diagnose debug application sshd -1
# diagnose debug console timestamp enable
# diagnose debug enable
Note: To disable the debug, run 'diagnose debug disable'.
2) Connect to the equipment via SSH and save the session logs as sniffer.log.
# diagnose sniffer packet any "host x.x.x.x" 6 0 l <- l is small letter of L
Note: x.x.x.x is the ssh client IP address.
3) Collect the ssh login event log.
SSH login will try to authenticate through pubkey first and then password if that fails.
If the problem continues, contact Fortinet support. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.