![](/img/trans.png)
[英]Python paramiko - SSH keyboard-interactive authentication isn't working on remote server
[英]Connecting ssh client with Paramiko using Python to dell idrac fails keyboard-interactive authentication
所以戴爾在他們的新 iDRAC 固件中改變了一些東西,他們在你登錄后需要鍵盤交互式身份驗證,而我不能再使用 Paramiko 登錄。
有人在論壇中發布了一個代碼片段來修補 Paramiko client.py 我將以下內容添加到連接 function
if password is not None:
try:
self._transport.auth_password(username, password)
return
self._log(DEBUG, "trying password")
allowed_types = self._transport.auth_password(username, password)
if not allowed_types:
return
except SSHException as e:
saved_exception = e
elif two_factor:
if 'keyboard-interactive' in allowed_types:
try:
self._log(DEBUG, "trying interactive")
self._transport.auth_interactive_dumb(username)
return
except SSHException as e:
saved_exception = e
但仍然有同樣的錯誤。 這是我正在使用的 ssh 連接 function。
def connectSSH(my_file, user_name, password):
ssh = paramiko.SSHClient()
ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
ip = str(my_file.split(',')[0]).strip()
try:
ssh.connect(ip, 22, user_name, password, look_for_keys=False)
return ssh
except:
with open(f'{ip}.txt', 'a') as f:
f.writelines(ip + '\t COULDN\'T CONNECT\n')
當我在空閑時運行它時它會連接但說等待身份驗證
ssh.get_transport() <paramiko.Transport at 0xe43670(密碼 aes128-ctr,128 位)(已連接;等待身份驗證)>
這是我得到的追溯
Traceback (most recent call last):
File "<pyshell#16>", line 1, in <module>
stdin, stdout, stderr = ssh.exec_command('racadm getsysinfo')
File "C:\Users\kevinc\AppData\Local\Programs\Python\Python38-32\lib\site-packages\paramiko\client.py", line 508, in exec_command
chan = self._transport.open_session(timeout=timeout)
File "C:\Users\kevinc\AppData\Local\Programs\Python\Python38-32\lib\site-packages\paramiko\transport.py", line 875, in open_session
return self.open_channel(
File "C:\Users\kevinc\AppData\Local\Programs\Python\Python38-32\lib\site-packages\paramiko\transport.py", line 1006, in open_channel
raise e
File "C:\Users\kevinc\AppData\Local\Programs\Python\Python38-32\lib\site-packages\paramiko\transport.py", line 2055, in run
ptype, m = self.packetizer.read_message()
File "C:\Users\kevinc\AppData\Local\Programs\Python\Python38-32\lib\site-packages\paramiko\packet.py", line 459, in read_message
header = self.read_all(self.__block_size_in, check_rekey=True)
File "C:\Users\kevinc\AppData\Local\Programs\Python\Python38-32\lib\site-packages\paramiko\packet.py", line 303, in read_all
raise EOFError()
EOFError
任何幫助表示贊賞
謝謝
nvm 我發現它不知道有一種方法可以向連接發送虛假條目,無需編輯 client.py 文件
如果有人需要,這是我的連接方法**編輯注意到,如果它是舊版本並且不需要進一步的身份驗證,它將失敗,所以我進行了檢查
def connectSSH(my_file, user_name, password):
ip = str(my_file.split(',')[0]).strip()
ssh = paramiko.SSHClient()
ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
try:
ssh.connect(ip, 22, user_name, password)
key_auth = str(ssh.get_transport())
if 'awaiting auth' in key_auth:
(ssh.get_transport()).auth_interactive_dumb(user_name)
return ssh
except:
with open(f'{ip}.txt', 'a') as f:
f.writelines(ip + '\t COULDN\'T CONNECT\n')
我遇到了類似的問題:使用 Paramiko 的 Python 代碼嘗試登錄戴爾 iDRAC 時停止使用簡單的用戶名/密碼身份驗證。 我正在針對 iDRAC Controller 版本 9 運行我的 Python/Paramiko --> iDRAC 代碼,發現現在需要鍵盤交互式身份驗證。
下面的代碼與原始發布者的代碼類似,顯示了使用用戶名/密碼身份驗證登錄 iDRAC 9 controller 的工作示例:
import paramiko
import logging
logging.basicConfig(level=logging.DEBUG)
logger = logging.getLogger('ssh_test_app')
logging.getLogger("paramiko").setLevel(logging.DEBUG)
host = '10.255.1.2'
password = 'mypw'
username = 'myuser'
port = 22
client = paramiko.SSHClient()
client.load_system_host_keys()
client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
retval = 0
cmd = 'racadm getsysinfo'
try:
client.connect(host, port=port, username=username, password=password, allow_agent=False, look_for_keys=False)
transport = client.get_transport()
if not transport.is_authenticated():
transport.auth_interactive_dumb(username)
if transport.is_authenticated():
logger.info('transport is authenticated')
_stdin, stdout, stderr = client.exec_command(cmd)
res = stdout.read()
logger.info('Command {0}:\n{1}'.format(cmd, res))
else:
logger.error('transport is not authenticated')
except paramiko.AuthenticationException:
logger.error('paramiko.AuthenticationException')
retval = 1
except paramiko.BadHostKeyException:
logger.error('paramiko.BadHostKeyException')
retval = 1
except paramiko.SSHException:
logger.error('paramiko.SSHException')
retval = 1
finally:
transport.close()
logger.info('Exiting at end of script: exit code {0}'.format(retval))
exit(retval)
我們對其進行了修改,它適用於新舊戴爾固件
`
from paramiko import SSHClient, WarningPolicy
def sshConnect(hostname, username, password):
client = SSHClient()
client.set_missing_host_key_policy(WarningPolicy())
client.connect(hostname=hostname, username=username, password=password)
transport = client.get_transport()
status = transport.is_authenticated()
if not status:
client.get_transport()).auth_interactive_dumb(username)
stdin, stdout, stderr = client.exec_command("racadm getsysinfo")
res = stdout.read()
return res
`
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.