SSH connections for host monitoring fails due to unsupported host key algorithms; the following type of messages are present in the agent logs:
YYYY-MM-DD hh:mm:ss.SSS WARN [HostActivitiesCreator[453]-0] com.dell.foglight.infrastructure.delegate.AbstractUnixAgentDelegate - Unable to connect to host "hostname"
com.quest.glue.api.services.RemoteConnectionException: A connection could not be established to hostname:22
...
Caused by: com.quest.glue.api.services.ConnectionRefusedException: The remote machine is visible but has refused the connection
...
Caused by: java.io.IOException: Key exchange was not finished, connection is closed.
at ch.ethz.ssh2.transport.KexManager.getOrWaitForConnectionInfo(KexManager.java:77)
at ch.ethz.ssh2.transport.TransportManager.getConnectionInfo(TransportManager.java:175)
at ch.ethz.ssh2.Connection.connect(Connection.java:798)
at com.quest.glue.core.remoteconnection.ssh.SSHGanymedConnectionImpl.reconnect(SSHGanymedConnectionImpl.java:528)
... 53 more
Caused by: java.io.IOException: Cannot negotiate, proposals do not match.
at ch.ethz.ssh2.transport.ClientKexManager.handleMessage(ClientKexManager.java:124)
at ch.ethz.ssh2.transport.TransportManager.receiveLoop(TransportManager.java:600)
On the target host, '/var/log/secure' log reports that only ssh-rsa and ssh-dss are offered by the client connection.
MMM DD hh:mm:ss hostname sshd[3091]: Unable to negotiate with <FglAM IP> port 48400: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth]
WORKAROUND
None. Supported algorithms (E.g. ssh-rsa) need to be enabled for connections to be established.
For a list of currently supported algorithms refer to What ciphers and algorithms are supported for SSH connections? (4374721).
STATUS
This has been logged as Enhancement Request number FOG-2914 and has been included in the Foglight Agent Manager 7.1.5 release.
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. 利用規約 プライバシー Cookie Preference Center