"Discover Interfaces" not working
- Thread starter pengels
- Start date
Don't worry, I totally understand.
I think that, as you have already pointed, this can be the problem:
It is not possible to use the -t option in the FWCloud ssh connection.
And it is not possible what you have said in your last post.
I think that, as you have already pointed, this can be the problem:
sudo: no tty present and no askpass program specifiedIt is not possible to use the -t option in the FWCloud ssh connection.
And it is not possible what you have said in your last post.
I think that it is posible to disable the
Other option is to use the root user, but don't save its password in FWCloud.
We usually recommend that, as an extra security measure, don't shave ssh user data in the FWCloud firewalls data. SSH data are only required occasionally, for example, when you have to make things like install firewall policy, discover interfaces, install VPNs, etc.
The rest of the time you can operate with FWCloud without the need of these data.
Please, let me know if some of these options solves the problem.
requiretty option for your ssh user in the /etc/sudoers file. It can be a solution for the problem.Other option is to use the root user, but don't save its password in FWCloud.
We usually recommend that, as an extra security measure, don't shave ssh user data in the FWCloud firewalls data. SSH data are only required occasionally, for example, when you have to make things like install firewall policy, discover interfaces, install VPNs, etc.
The rest of the time you can operate with FWCloud without the need of these data.
Please, let me know if some of these options solves the problem.
I get these results depending on which sudo option I have:
This one works when I do
I get
Same result as the one above.
Same result as the two above.
At this point, I'm mostly just posting my troubleshooting steps in case I fix it so it could be helpful if someone else runs into this issue.
fwcloudapi ALL=(root) NOPASSWD: /usr/sbin/ip *This one works when I do
ssh fwcloudapi@mysystem sudo ip address show. It asks me for my password for the login, but not for the sudo command.fwcloudapi ALL=(root) NOPASSWD: /usr/sbin/ip * !requirettyI get
root@myothersystem ~ $ ssh fwcloudapi@mysystem sudo ip address show
fwcloudapi@mysystem's password:
sudo: no tty present and no askpass program specified
fwcloudapi ALL=(root) /usr/sbin/ip * Same result as the one above.
fwcloudapi ALL=(root) /usr/sbin/ip * !requirettySame result as the two above.
At this point, I'm mostly just posting my troubleshooting steps in case I fix it so it could be helpful if someone else runs into this issue.
One moment, I think that the problem is that you are not using a user with sudo privileges (a sudo user), you are allowing a regular user the execution of some commands as a privileged user with sudo. These are quite different things.
May you create a new user with sudo privileges as explained here and try it again with this new user ?
Answering your last post, of course, any suggestion is welcome and studied. Some of the features that we have been incorporating to FWCloud have born form Internet community features request.
Regarding your feature request, have in mind that for make things like install policy, upload VPNs config, etc. you need root or a sudo user. For example, you can not upload the IPTables policy into your firewall without a root or sudo user. For this reason we require such kind of user.
May you create a new user with sudo privileges as explained here and try it again with this new user ?
Answering your last post, of course, any suggestion is welcome and studied. Some of the features that we have been incorporating to FWCloud have born form Internet community features request.
Regarding your feature request, have in mind that for make things like install policy, upload VPNs config, etc. you need root or a sudo user. For example, you can not upload the IPTables policy into your firewall without a root or sudo user. For this reason we require such kind of user.
Have you created a new user or simply added the one that you are using to the wheel group ?
May you create a complete new sudo user following all the steps in the link of my previous post ?
FWCloud uses a npm node module for ssh communications.
It fist creates the ssh connection and then sends the command.
May you create a complete new sudo user following all the steps in the link of my previous post ?
FWCloud uses a npm node module for ssh communications.
It fist creates the ssh connection and then sends the command.
Please, can you specify the exact Linux distribution version of your server ?
We are going to try reproduce the problem.
If we can reproduce the problem we will be able to find a solution.
We are going to try reproduce the problem.
If we can reproduce the problem we will be able to find a solution.
We have been able to reproduce the problem in a Centos 7 installation and we have already applied a patch to solve it.
The solution will be available in the next FWCloud release that we are going to publish in a few days.
The solution will be available in the next FWCloud release that we are going to publish in a few days.
We have just published a new release of FWCloud with the patch for make it go in Centos 7.
Please, may you update, try it again and confirm if the problem is solved?
Please, may you update, try it again and confirm if the problem is solved?
We are going to reproduce the problem in Red Hat Enterprise 8 and publish a patch release to solve it.