FW External User added a comment - 05/Oct/21 6:43 PM Hi all, https://jira.fiware.org/browse/HELP-18345?focusedCommentId=114928&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-114928 The problem persists. This time I create the key-pair via FIWARE portal. I selected this for the creation of the instance From the provisioning logs https://cloud.lab.fiware.org/project/instances/cb8b0ef2-74fd-4b07-84c9-1e8ac111f4a8/?tab=instance_details__log the cloud-init responds with [ 38.381758] cloud-init [823] : Cloud-init v. 18.3-9-g2e62cb8a-0ubuntu1~18.04.2 running 'modules:final' at Tue, 05 Oct 2021 16:09:09 +0000. Up 37.36 seconds. [ 38.388697] cloud-init [823] : ci-info: no authorized ssh keys fingerprints found for user ubuntu. [ 38.391004] cloud-init [823] : Cloud-init v. 18.3-9-g2e62cb8a-0ubuntu1~18.04.2 finished at Tue, 05 Oct 2021 16:09:10 +0000. Datasource DataSourceNone. Up 38.34 seconds [ 38.400081] cloud-init [823] : 2021-10-05 16:09:10,685 - cc_final_message.py [WARNING] : Used fallback datasource responds no authorized ssh keys fingerprints found for user ubuntu So I am guessing that this is the cause of the problem and no matter what I STILL receive the banner ################################################################################## NOTE: You have accessed a system owned by FIWARE Lab. You must have authorisation before using it, and your use will be strictly limited to that indicated in the authorisation. Unauthorised access to this system or improper use of the same is prohibited and is against the FIWARE Terms & Conditions Policy and the legislation in force. The use of this system may be monitored. ################################################################################# My instance is : name ssh-jump-host ID cb8b0ef2-74fd-4b07-84c9-1e8ac111f4a8 Status Active Availability Zone nova Created Oct. 5, 2021, 3:54 p.m. Time Since Created 27 minutes Specs Flavor m1.small Flavor ID 2 RAM 2GB VCPUs 1 VCPU Disk 20GB IP Addresses Node-Int-Net-01 192.168.111.240, 150.254.155.201 Security Groups ssh-icmp-all ALLOW IPv6 to ::/0 ALLOW IPv4 icmp from 0.0.0.0/0 ALLOW IPv4 22/tcp from ssh-icmp-all ALLOW IPv4 icmp to 0.0.0.0/0 ALLOW IPv4 to 0.0.0.0/0 ALLOW IPv4 1024-65000/tcp to 0.0.0.0/0 ALLOW IPv4 22/tcp from 0.0.0.0/0 Metadata Key Name cloud2 Image Name base_ubuntu_18.04 dkalo@ajax:/home/dkalo % ssh -vvv -i cloud2.pem ubuntu@150.254.155.201 OpenSSH_7.8p1, OpenSSL 1.1.1d-freebsd 10 Sep 2019 debug1: Reading configuration data /home/dkalo/.ssh/config debug1: Reading configuration data /etc/ssh/ssh_config debug2: resolve_canonicalize: hostname 150.254.155.201 is address debug2: ssh_connect_direct debug1: Connecting to 150.254.155.201 [150.254.155.201] port 22. debug1: Connection established. debug1: identity file cloud2.pem type -1 debug1: identity file cloud2.pem-cert type -1 debug1: Local version string SSH-2.0-OpenSSH_7.8 FreeBSD-20180909 debug1: Remote protocol version 2.0, remote software version OpenSSH_7.6p1 Ubuntu-4 debug1: match: OpenSSH_7.6p1 Ubuntu-4 pat OpenSSH_7.0*,OpenSSH_7.1*,OpenSSH_7.2*,OpenSSH_7.3*,OpenSSH_7.4*,OpenSSH_7.5*,OpenSSH_7.6*,OpenSSH_7.7* compat 0x04000002 debug2: fd 3 setting O_NONBLOCK debug1: Authenticating to 150.254.155.201:22 as 'ubuntu' debug3: Fssh_hostkeys_foreach: reading file "/home/dkalo/.ssh/known_hosts" debug3: Fssh_record_hostkey: found key type ECDSA in file /home/dkalo/.ssh/known_hosts:71 debug3: Fssh_load_hostkeys: loaded 1 keys from 150.254.155.201 debug3: order_hostkeyalgs: prefer hostkeyalgs: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521 debug3: send packet: type 20 debug1: SSH2_MSG_KEXINIT sent debug3: receive packet: type 20 debug1: SSH2_MSG_KEXINIT received debug2: local client KEXINIT proposal debug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,ext-info-c debug2: host key algorithms: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbc debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbc debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 debug2: compression ctos: none,zlib@openssh.com,zlib debug2: compression stoc: none,zlib@openssh.com,zlib debug2: languages ctos: debug2: languages stoc: debug2: first_kex_follows 0 debug2: reserved 0 debug2: peer server KEXINIT proposal debug2: KEX algorithms: diffie-hellman-group-exchange-sha256 debug2: host key algorithms: ssh-rsa,rsa-sha2-512,rsa-sha2-256,ecdsa-sha2-nistp256,ssh-ed25519 debug2: ciphers ctos: aes256-ctr,aes192-ctr,aes128-ctr debug2: ciphers stoc: aes256-ctr,aes192-ctr,aes128-ctr debug2: MACs ctos: hmac-sha2-512,hmac-sha2-256 debug2: MACs stoc: hmac-sha2-512,hmac-sha2-256 debug2: compression ctos: none,zlib@openssh.com debug2: compression stoc: none,zlib@openssh.com debug2: languages ctos: debug2: languages stoc: debug2: first_kex_follows 0 debug2: reserved 0 debug1: kex: algorithm: diffie-hellman-group-exchange-sha256 debug1: kex: host key algorithm: ecdsa-sha2-nistp256 debug1: kex: server->client cipher: aes128-ctr MAC: hmac-sha2-256 compression: none debug1: kex: client->server cipher: aes128-ctr MAC: hmac-sha2-256 compression: none debug3: send packet: type 34 debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(2048<8192<8192) sent debug3: receive packet: type 31 debug1: got SSH2_MSG_KEX_DH_GEX_GROUP debug2: bits set: 4051/8192 debug3: send packet: type 32 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug3: receive packet: type 33 debug1: got SSH2_MSG_KEX_DH_GEX_REPLY debug1: Server host key: ecdsa-sha2-nistp256 SHA256:XbP2pJ0BEmcUCe+/BAf+F/FwD1bo9Lw2hlXDtuwqIHU debug3: verify_host_key_dns debug1: skipped DNS lookup for numerical hostname debug3: Fssh_hostkeys_foreach: reading file "/home/dkalo/.ssh/known_hosts" debug3: Fssh_record_hostkey: found key type ECDSA in file /home/dkalo/.ssh/known_hosts:71 debug3: Fssh_load_hostkeys: loaded 1 keys from 150.254.155.201 debug1: Host '150.254.155.201' is known and matches the ECDSA host key. debug1: Found key in /home/dkalo/.ssh/known_hosts:71 debug2: bits set: 4052/8192 debug3: send packet: type 21 debug2: set_newkeys: mode 1 debug1: rekey after 4294967296 blocks debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug3: receive packet: type 21 debug1: SSH2_MSG_NEWKEYS received debug2: set_newkeys: mode 0 debug1: rekey after 4294967296 blocks debug2: key: dell-dkalo-key (0x80124d380), agent debug2: key: cloud2.pem (0x0), explicit debug3: send packet: type 5 debug3: receive packet: type 7 debug1: SSH2_MSG_EXT_INFO received debug1: Fssh_kex_input_ext_info: server-sig-algs=<ssh-ed25519,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521> debug3: receive packet: type 6 debug2: service_accept: ssh-userauth debug1: SSH2_MSG_SERVICE_ACCEPT received debug3: send packet: type 50 debug3: receive packet: type 53 debug3: input_userauth_banner ################################################################################## NOTE: You have accessed a system owned by FIWARE Lab. You must have authorisation before using it, and your use will be strictly limited to that indicated in the authorisation. Unauthorised access to this system or improper use of the same is prohibited and is against the FIWARE Terms & Conditions Policy and the legislation in force. The use of this system may be monitored. ################################################################################# debug3: receive packet: type 51 debug1: Authentications that can continue: publickey debug3: start over, passed a different list publickey debug3: preferred publickey,keyboard-interactive,password debug3: authmethod_lookup publickey debug3: remaining preferred: keyboard-interactive,password debug3: authmethod_is_enabled publickey debug1: Next authentication method: publickey debug1: Offering public key: RSA SHA256:l4zDpwJMq7h1uYIJULMg/MkaexNnX2fcgt4jnwrDUHo dell-dkalo-key debug3: send packet: type 50 debug2: we sent a publickey packet, wait for reply debug3: receive packet: type 51 debug1: Authentications that can continue: publickey debug1: Trying private key: cloud2.pem debug3: sign_and_send_pubkey: RSA SHA256:kKnD3LRRL0tha60+9d8E220hWsxCfOjNMIq/dU8Uz2w debug3: sign_and_send_pubkey: signing using rsa-sha2-512 debug3: send packet: type 50 debug2: we sent a publickey packet, wait for reply debug3: receive packet: type 51 debug1: Authentications that can continue: publickey debug2: we did not send a packet, disable method debug1: No more authentication methods to try. ubuntu@150.254.155.201: Permission denied (publickey). dkalo@ajax:/home/dkalo % I have tried to follow the guidelines from fiware-lab and cloud init but to no help Kind regards Dimitris – Χαιρετισμούς, Δημήτρης Καλογεράς Ερευνητής ΕΠΙΣΕΥ – Dimitrios K. Kalogeras Electrical Engineer Ph.D. Network Engineer NTUA/ICCS

Poznan Node Helpdesk added a comment - 06/Oct/21 11:54 AM Hello Please recreate new instance. Our metadata server did not pass ssh public key to the instance.