RE: VS Code

[Greg Wilburn <gwilburn@xxxxxxxxxxxxxxxxxxxxxxx>]

I certainly was... all day long.

Thanks for all the help.

BTW CPF22E3 (which I looked up before posting)

Message . . . . :   User profile &1 is disabled.                             
Cause . . . . . :   The number of sign-on attempts not valid for this profile
  has exceeded the maximum sign-on attempts allowed for the user. If the     
  Maximum sign-on attempts value for the user is *SYSVAL, the QMAXSIGN system
  value determines the maximum number of sign-on attempts.                   

This was definitely not the case.

For anyone else that encounters a similar issue...
I had secured our SSHD by disabling password authentication (PasswordAuthentication = no in SSHD_CONFIG) a while ago and forgot about it.
Secondly, I believe the message above was referring to the user profile QSSHD which was disabled (thank you Marc Rauzier)



-----Original Message-----
From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> On Behalf Of Richard Schoen
Sent: Wednesday, August 30, 2023 4:46 PM
To: midrange-l@xxxxxxxxxxxxxxxxxx
Subject: RE: VS Code

You sound a bit like a grumpy grandpa. 

Seems that they had passwords disabled. 

Regards,
Richard Schoen
Web: http://www.richardschoen.net
Email: richard@xxxxxxxxxxxxxxxxx

----------------------------------------------------------------------

message: 1
date: Wed, 30 Aug 2023 14:39:18 -0500
from: Scott Klement <midrange-l@xxxxxxxxxxxxxxxx>
subject: Re: VS Code

Hello,

Why is everyone who has responded to this seemly taking wild guesses as to what the problem is?? So you have this error message:

fatal: QsyGetProfileHandleNoPwd qsshd CPF22E3 [preauth] from QSECOFR

Firstly, look up RNF22E3...?? DSPMSGD can be used to see what it means.? 
This would literally take you one second to do.

Secondly, you can look at the docs for QsyGetProfileHandleNoPwd API.

So far I've noted these wild guesses:

1) SSH is requiring a key rather than a password.? HUH?? Why on earth would that return a message from QsyGetProfileHandleNoPwd -- this routine has nothing whatsoever to do with SSH keys.? So this guess doesn't fit the symptoms.

2) 10 character passwords.? Errr... forgive me, but... why would the "No password" version of the API care how many characters are in a password?

Look up CPF22E3, see what it means, look around at the relevant user profiles on your system... an educated guess based on knowledge is almost always more useful than taking wild guesses at random!


On 8/30/23 2:14 PM, Richard Schoen wrote:
> Only if the SSH Server is configured to need keys and not allow user/password.
>
> Are you possibly running into a 10 char password issue ?
>
> Regards,
> Richard Schoen
> Web: http://www.richardschoen.net
> Email: richard@xxxxxxxxxxxxxxxxx
>
> ------------------------------
>
> message: 5
> date: Wed, 30 Aug 2023 17:48:20 +0000
> from: Greg Wilburn <gwilburn@xxxxxxxxxxxxxxxxxxxxxxx>
> subject: VS Code
>
> I have a vendor trying to connect to our IBM i system (v7r5) with VS Code IDE.  They are connected to our network via VPN and can run 5250 sessions and such.
>
> I started our SSH server, but we are seeing the following error in QSYSOPR messages and our History Log.
>
> sshd[15191]: fatal: QsyGetProfileHandleNoPwd qsshd CPF22E3 [preauth] 
> from QSECOFR
>
> Does this connection require pre-shared keys?
>
> TIA,
> Greg