Skip to main content

Error: Invalid SSH Credentials Authentication Failed

Netwrix Privilege Secure Discovery (formerly SecureONE)

Symptom

When you try to register a Linux endpoint the following error occurs:

Invalid SSH Credentials Authentication Failed

Cause

Windows Command Prompt occurrence: this happens when you try to register a new Linux endpoint and either the Registration account is not on the endpoint in the /etc/sudoers file or the password for that account doesn't match what you are using in the registration process (via the QuickStart or Postman).

Resolution

  1. Step 1. Log into the Linux endpoint via SSH with a sudoer's account.

  2. Step 2. Confirm the Registration account is within the /etc/passwd file (which lists all users that have basic access to the Linux system) with the below command. The output from this command will display the contents of the passwd file, which should have the Registration account listed.

    cat /etc/passwd

    1. If the Registration account is not in the output (aka the /etc/passwd file), it will need to be created with the command below; replace the REGISTER-ACCOUNT string with the actual name of the account being used for the one-time registration of systems into Netwrix Privilege Secure Discovery. If it is in the output, continue on to Step 3 and test the password being used.

      The command may vary depending on the Linux operating system:

      sudo useradd REGISTER-ACCOUNT

      Example: for a user named "secureone" the command would be sudo useradd secureone

    2. Once the above useradd process has been completed, set the password for that account with the command below; again replace the REGISTER-ACCOUNT string with the actual name.

      The command may vary depending on the Linux operating system:

      sudo passwd REGISTER-ACCOUNT

      Example: for a user named "secureone" the command would be sudo passwd secureone

    3. Test the password for the account with the command below. Remember to replace the REGISTER-ACCOUNT string with the actual name of the account:

      su REGISTER-ACCOUNT

  3. Step 3. Confirm the Registration account is within the /etc/sudoers file with the command below. The output from this command will display the contents of the sudoers file, which should have the "registration account" listed:

    sudo cat /etc/sudoers