I am using Serv-U v15.1.2.215 (with SP1 & SP2 installed) and WebDrive v12.22 (build #4228).
I am unable to successfully connect to Serv-U from WebDrive when I am using a Windows Authentication + SSH key.
The table below summarises the various combinations I have tried. In each testing pair, I have used the same SSH public/private key (for those tests that required a key). As you can see from the table below, Serv-U and WebDrive fail when using Windows Authentication if a SSH key is required. If I use the SAME Windows Account but remove the SSH key then I am able to successfully connect.
Connect type | Target SFTP Server (SERV-U) |
|
RESULT | |
User Type | Require Key? | Key Generated by | ||
WebDrive SFTP | Local Domain User | No | N/A | Successfully connects |
WebDrive SFTP | Windows Authentication | No | N/A | Successfully connects |
WebDrive SFTP | Local Domain User | Yes, SSH Key set in Domain User properties in Serv-U. | WebDrive (DSA or RSA) | Successfully connects |
WebDrive SFTP | Windows Authentication | Yes, SSH Key set in Windows Group Properties in Serv-U | WebDrive (DSA or RSA) | DOES NOT CONNECT |
WebDrive SFTP | Local Domain User | Yes, SSH Key set in Domain User properties in Serv-U. | PuttyGen (DSA or RSA) | Successfully connects |
WebDrive SFTP | Windows Authentication | Yes, SSH Key set in Windows Group Properties in Serv-U | PuttyGen (DSA or RSA) | DOES NOT CONNECT |
FTP Voyager SFTP | Local Domain User | Yes, SSH Key set in Domain User properties in Serv-U. | FTP Voyager (DSA or RSA) | Successfully connects |
FTP Voyager SFTP | Windows Authentication | Yes, SSH Key set in Windows Group Properties in Serv-U | FTP Voyager (DSA or RSA) | Successfully connects |
Note: Serv-U = Limit & Settings -> Password : SSH Authentication = set to default (requires Password and Public Key) in both local Serv-U Domain Users + Windows Groups
Has anyone encountered the same issue and/or managed to get this successfully working with WebDrive with Windows Authentication and SSH Keys?
WebDrive error log when it fails:
01/18/2016 13:59:09.281 (000.136) 10f0 [W:] Connecting to 10.63.128.22
01/18/2016 13:59:09.281 (000.491) 10f0 [W:] Connecting to 10.63.128.22 on port 22
01/18/2016 13:59:09.281 (000.314) 10f0 [W:] Connecting to port 22
01/18/2016 13:59:09.281 (000.663) 10f0 [W:] Connecting to 10.63.128.22 on port 22
01/18/2016 13:59:09.291 (003.846) 10f0 [W:] Connected successfully to the server on port 22
01/18/2016 13:59:09.291 (000.083) 10f0 [W:] Max socket send default (8192) TCPNoDelay 1
01/18/2016 13:59:09.291 (000.031) 10f0 [W:] Max socket send 131072
01/18/2016 13:59:09.291 (000.596) 3f64 [W:] SSH Key Exchange Initializing....
01/18/2016 13:59:09.291 (000.058) 3f64 [W:] Supported Kex Algorithm: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
01/18/2016 13:59:09.291 (000.025) 3f64 [W:] Supported HostKey Algorithm: ssh-rsa,ssh-dss
01/18/2016 13:59:09.291 (000.027) 3f64 [W:] Supported Encryption Algorithm: aes256-cbc,twofish256-cbc,twofish-cbc,aes128-cbc,twofish128-cbc,blowfish-cbc,3des-ctr,3des-cbc,cast128-cbc,none
01/18/2016 13:59:09.291 (000.026) 3f64 [W:] Supported Mac Algorithm: hmac-sha1,hmac-sha2-224,hmac-sha2-256,hmac-sha2-384,hmac-sha2-512,hmac-md5,hmac-none
01/18/2016 13:59:09.291 (000.023) 3f64 [W:] Supported Compression Algorithm: none
01/18/2016 13:59:09.301 (014.597) 3f64 [W:] SSH Key Exchange Complete....
01/18/2016 13:59:09.301 (000.055) 3f64 [W:] Negotiated Kex Algorithm: diffie-hellman-group14-sha1
01/18/2016 13:59:09.301 (000.024) 3f64 [W:] Negotiated HostKey Algorithm: ssh-dss
01/18/2016 13:59:09.301 (000.023) 3f64 [W:] Negotiated Client->Server Encryption Algorithm: aes256-cbc
01/18/2016 13:59:09.301 (000.022) 3f64 [W:] Negotiated Server->Client Encryption Algorithm: aes256-cbc
01/18/2016 13:59:09.301 (000.021) 3f64 [W:] Negotiated Client->Server Mac Algorithm: hmac-sha1
01/18/2016 13:59:09.301 (000.021) 3f64 [W:] Negotiated Server->Client Mac Algorithm: hmac-sha1
01/18/2016 13:59:09.301 (000.021) 3f64 [W:] Negotiated Client->Server Compression Algorithm: none
01/18/2016 13:59:09.301 (000.021) 3f64 [W:] Negotiated Server->Client Compression Algorithm: none
01/18/2016 13:59:09.561 (344.214) 10f0 [W:] Handshake failed, error=1609 Error: 1609, SSH Handshake failed with remote host. Recheck your username and password (or host key file if one is in use). Also make sure you have selected Ciphers/MACs that are compatible with those on the server.
01/18/2016 13:59:09.561 (000.053) 10f0 [W:] Can't establish SFTP connection, (1609 - Error: 1609, SSH Handshake failed with remote host. Recheck your username and password (or host key file if one is in use). Also make sure you have selected Ciphers/MACs that are compatible with those on the server.
01/18/2016 13:59:09.561 (000.041) 10f0 [W:] closed encryption engine
01/18/2016 13:59:09.561 (000.147) 10f0 [W:] closed encryption engine
01/18/2016 13:59:09.561 (000.349) 10f0 [W:] --> wdCacheMgr::FlushFiles
01/18/2016 13:59:09.561 (000.027) 10f0 [W:] <-- wdCacheMgr::FlushFiles (any offline files found 0)
01/18/2016 13:59:09.561 (000.083) 10f0 [W:] Failed to connect to Site 10.63.128.22 at 10.63.128.22, error=SSH Handshake failed with remote host. Recheck your username and password (or host key file if one is in use). Also make sure you have selected Ciphers/MACs that are compatible with those on the server., LogonFailure=1
01/18/2016 13:59:09.561 (000.079) 10f0 [W:] --> wdCacheMgr::Shutdown
01/18/2016 13:59:09.561 (000.033) 10f0 [W:] Waiting for thread pool to shut down
01/18/2016 13:59:09.561 (000.240) 10f0 [W:] --> wdCacheSyncMgr::Shutdown force (1)