On Wed, Mar 23, 2016 at 1:04 PM, Fabrice Bacchella <fabrice.bacche...@orange.fr> wrote: > I'm reading the documentation here : > http://www.ovirt.org/documentation/admin-guide/serial-console-setup/ > > After a few strace, I found the ssh configuration used for the custom ssh > that listen on port 2222: > /usr/share/ovirt-vmconsole/ovirt-vmconsole-proxy/ovirt-vmconsole-proxy-sshd/sshd_config > > And I have a big problem with it. > It says "GSSAPIAuthentication no" but public key authentication is not > allowed in my data center, we use kerberos every where. > So I wonder if I can edit this file ? How is it managed by ovirt ?
In general, things under /usr are only packaged, not "managed". So a next upgrade will overwrite your changes. Seems like both its systemd unit and sysv init script read /etc/sysconfig/ovirt-vmconsole-proxy-sshd if it exists and add ${OPTIONS} to sshd's command line. So you can try to: echo 'OPTIONS="-o GSSAPIAuthentication=yes"' >> /etc/sysconfig/ovirt-vmconsole-proxy-sshd and restart it. > I can always use puppet to modify just this line, it will be fine for me. > > The point 4 in Automatic Setup is not very helpfull: > " • once the setup succesfully run, and once ovirt-engine is running, > you can log in and register a SSH key. (TODO: add picture)" > > what does it mean ? No idea. Adding Francesco. -- Didi _______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users