I would like to understand what exactly happens in the background when we hit the “Upgrade Agent” action available for the Hosts in the UI.
In my case, I’m trying to upgrade the agent using this option but this fails eventually and in the host’s log i can see the following authentication errors/warnings.
I presume these failed SSH connection attempts are from one of the Appliance nodes(Ours is a 3 node HA appliance) to the Client i.e. Host. But i can make successful SSH connections for the User: ansible from all 3 appliance nodes to the Host. So what is different when it is triggered from the UI? Are the credentials stored somewhere locally in the appliance nodes? I would like to make this “Upgrade Agent” working.
Jan 28 23:16:14 ducvl1018 sshd[1579143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.1.4.1 user=ansible
Jan 28 23:16:14 ducvl1018 sshd[1579143]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=10.1.4.1 user=ansible
Jan 28 23:16:14 ducvl1018 sshd[1579143]: pam_sss(sshd:auth): received for user ansible: 10 (User not known to the underlying authentication module)
Jan 28 23:16:16 ducvl1018 sshd[1579143]: Failed password for ansible from 10.1.4.1 port 34010 ssh2
Jan 28 23:16:17 ducvl1018 sshd[1579143]: error: Received disconnect from 10.1.4.1 port 34010:3: com.jcraft.jsch.JSchException: Auth fail for methods ‘publickey,gssapi-keyex,gssapi-with-mic,password’ [preauth]
Jan 28 23:16:17 ducvl1018 sshd[1579143]: Disconnected from authenticating user ansible 10.1.4.1 port 34010 [preauth]
Jan 28 23:16:18 ducvl1018 sshd[1579147]: error: Received disconnect from 10.1.4.1 port 34016:3: com.jcraft.jsch.JSchException: Auth fail for methods ‘publickey,gssapi-keyex,gssapi-with-mic,password’ [preauth]
Jan 28 23:16:18 ducvl1018 sshd[1579147]: Disconnected from authenticating user ansible 10.1.4.1 port 34016 [preauth]