I have set of linux machines configured with GSSAPI SSO. After logging in to first machine (jump host) with password, I can connect by SSH to all other machines with kerberos ticket. Now I'd like to automate connections to other hosts. I've tried with ProxyCommand and netcat but it doesn't work. It there any way to make it working ?
Asked
Active
Viewed 405 times
0
-
*doesn't work* is not an diagnose. – Jakuje Feb 29 '16 at 11:12
-
With ProxyCommand I need to put password twice, I suspect that ticket from jump host is not forwarded. – Jarek Feb 29 '16 at 11:43
-
No, `ProxyCommand` is using your local authentication (by design). If you would have ticket on your local host, it would work for you. – Jakuje Feb 29 '16 at 11:49
-
Is there any other solution which will work ? – Jarek Feb 29 '16 at 12:37
-
I can think of `ssh jumpbox ssh otherhost`. But it is not elegant nor supported by `ssh_config`. – Jakuje Feb 29 '16 at 12:38
-
Stackoverflow is for help with software development. You should consider asking this on http://unix.stackexchange.com/ or http://serverfault.com/. – Kenster Feb 29 '16 at 16:02