I started "cf-serverd -v" on the client before and then get these messages:
On the policyserver if I run cf-runagent -v:
cf3 -> Negated Classes = { }
cf3 Initiate variable convergence...
cf3 Initiate control variable convergence...
cf3 ...........................................................................
cf3 * Hailing 172.24.1.58 : 5308, with options "" (serial)
cf3 ...........................................................................
cf3 No existing connection to 172.24.1.58 is established...
cf3 Set cfengine port number to 5308 = 5308
cf3 Connect to 172.24.1.58 = 172.24.1.58 on port 5308
cf3 LastSaw host 172.24.1.58 now
cf3 Loaded /var/cfengine/ppkeys/root-172.24.1.58.pub
cf3 .....................[.h.a.i.l.].................................
cf3 Strong authentication of server=172.24.1.58 connection confirmed
cf3 !! Unspecified server refusal (see verbose server output)cf3 Couldn't recv
cf3 !!! System error for recv: "Connection reset by peer"
And this on the client if I run cf-severd -v :
cf3 New connection...(from ::ffff:192.168.78.50/4)
cf3 Spawning new thread...
cf3 Received: [CAUTH 192.168.78.50 hgesnm3.sz.salzgitter-ag.de root 0] on
socket 4
cf3 Allowing 192.168.78.50 to connect without (re)checking ID
cf3 Non-verified Host ID is hgesnm3.sz.salzgitter-ag.de (Using skipverify)
cf3 Non-verified User ID seems to be root (Using skipverify)
cf3 LastSaw host hgesnm3.sz.salzgitter-ag.de now
cf3 Received: [SAUTH y 256 37 c] on socket 4
cf3 Loaded /var/cfengine/ppkeys/root-192.168.78.50.pub
cf3 A public key was already known from
hgesnm3.sz.salzgitter-ag.de/::ffff:192.168.78.50 - no trust required
cf3 Adding IP ::ffff:192.168.78.50 to SkipVerify - no need to check this if we
have a key
cf3 The public key identity was confirmed as r...@hgesnm3.sz.salzgitter-ag.de
cf3 Strong authentication of client
hgesnm3.sz.salzgitter-ag.de/::ffff:192.168.78.50 achieved
cf3 Received: [EXEC ] on socket 4
cf3 User root is not allowed on this server
cf3 Server refusal due to non-allowed user
cf3 From (host=hgesnm3.sz.salzgitter-ag.de,user=root,ip=::ffff:192.168.78.50)
cf3 ID from connecting host: (EXEC )
--
Christian Seifert
Basistechnologie und Betrieb
GESIS Gesellschaft für Informationssysteme mbH
Eisenhüttenstraße 99
38239 Salzgitter
Internet www.gesis.de
--
GESIS Gesellschaft für Informationssysteme mbH | Sitz der Gesellschaft:
Salzgitter | Registergericht: Amtsgericht Braunschweig | Registernummer: HRB
6194 | Geschäftsführer: Dipl.-Ing. Günter König
-----Ursprüngliche Nachricht-----
Von: nwat...@symcor.com [mailto:nwat...@symcor.com]
Gesendet: Montag, 1. März 2010 14:47
An: Seifert, Christian
Cc: help-cfengine@cfengine.org; help-cfengine-boun...@cfengine.org
Betreff: Re: Remote Access
Is there a cf-serverd process running on 172.24.1.58? Does that process
grant access to the remote host where cf-runagent is initiated?
Sincerely,
--
Neil Watson
416-673-3465
_______________________________________________
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
