I'm running Fedora 36 Workstation with OpenSSH server 8.8p1. I want to log on a single remote user and authenticate with their password, but OpenSSH seems determined not to let me. I've tried every solution I can find online. Most of them seem to come down to "edit the password authentication line in /etc/ssh/sshd_config so that it reads as follows:
PasswordAuthentication yes
Done. I've also set the following:
PubkeyAuthentication no
KerberosAuthentication no
GSSAPIAuthentication no
I've tried connecting from Putty on Windows and through the terminal on another Fedora 36 Workstation. No luck. Same errors. I tried setting up keys, and I couldn't ssh-copy-id to the server because I haven't been able to authenticate a user yet.
At this point, my login attempt looks like this:
ssh -vv [email protected]
and always spits back
[email protected]: Permission denied (gssapi-keyex,gssapi-with-mic).
In the debug log, I also see
Authentications that can continue: gssapi-keyex,gssapi-with-mic
I'm sure I've restarted sshd. I'm sure that I'm editing the correct config file on the server. I've also tried to ssh with options set on the client side:
ssh -o [relevant options, etc.]
Why, if password authentication is set to yes, is it not showing up as an authentication method that can continue? Why, if GSSAPI is set to no, are those options showing as available? I've also tried removing openssh-server from the server and cleared out all ssh config files, then reinstalled and reset the options.
What else can I try?
I've seen references to UsePAM and ChallengeResponseAuthentication, but I've tried every combination of values for those, as well, and I keep ending up in the same place. The fact that I'm getting the same errors on both clients says that it's something on the server. Is there something that could be overriding my config file?
