1 |
On 03/19/09 10:03, Paul Hartman wrote: |
2 |
[snip] |
3 |
>> log/messages prints: |
4 |
>> user nx not allowed because account is locked |
5 |
>> |
6 |
>> How to unlock the account? |
7 |
> |
8 |
>passwd -u nx |
9 |
> |
10 |
>I had to do the same thing. |
11 |
> |
12 |
>Paul |
13 |
|
14 |
|
15 |
Yes, I tried it already: |
16 |
|
17 |
passwd -u nx |
18 |
passwd: unlocking the user would result in a passwordless account. |
19 |
You should set password with usermod -p to unlock this user account. |
20 |
Password changed. |
21 |
|
22 |
What do you do next? |
23 |
|
24 |
When I try to run again: |
25 |
nxsetup --install --setup-nomachine-key --clean --purge |
26 |
|
27 |
I get: |
28 |
... |
29 |
Setting up /var/log/nxserver.log ...done |
30 |
Setting up special user "nx" ...passwd: unlocking the user would result in a |
31 |
passwordless account. |
32 |
You should set a password with usermod -p to unlock this user account. |
33 |
Password changed. |
34 |
done. |
35 |
... |
36 |
----> Testing your nxserver connection ... |
37 |
Permission denied (publickey,keyboard-interactive). |
38 |
Fatal error: Could not connect to NX Server. |
39 |
|
40 |
Please check your ssh setup: |
41 |
|
42 |
The following are _examples_ of what you might need to check. |
43 |
|
44 |
- Make sure "nx" is one of the AllowUsers in sshd_config. |
45 |
(or that the line is outcommented/not there) |
46 |
- Make sure "nx" is one of the AllowGroups in sshd_config. |
47 |
(or that the line is outcommented/not there) |
48 |
- Make sure your sshd allows public key authentication. |
49 |
- Make sure your sshd is really running on port 22. |
50 |
- Make sure your sshd_config AuthorizedKeysFile in sshd_config is set |
51 |
to authorized_keys2. |
52 |
(this should be a filename not a pathname+filename) |
53 |
- Make sure you allow ssh on localhost, this could come from some |
54 |
restriction of: |
55 |
-the tcp wrapper. Then add in /etc/hosts.allow: ALL:localhost |
56 |
-the iptables. add to it: |
57 |
$ iptables -A INPUT -i lo -j ACCEPT |
58 |
$ iptables -A OUTPUT -o lo -j ACCEPT |
59 |
|
60 |
|
61 |
So at this point I'm back to square one in log/messages I get: |
62 |
User nx not allowed because account is locked |
63 |
|
64 |
-- |
65 |
#Joseph |
66 |
GPG KeyID: ED0E1FB7 |