Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-28614: Custom password prompt does not display when using SSH

Authentication Service ,  

26 February,20 at 10:49 PM

Problem:

After enabling the custom password prompt via the setting, "pam.password.enter.mesg: Enter AD Password:", in the /etc/centrifydc/centrifydc.conf file, the custom prompt does not appear when logging in via SSH.  The custom prompt does appear when doing a non SSH authentication. (ie direct GUI login, dzdo/sudo)


Cause:

In order for the custom prompt to display, the ChallengeResponseAuthentication setting in the sshd_config file needs to be set to yes.


Resolution:

1. Edit the sshd_config file. For stock ssh, the path is /etc/ssh/sshd_config

2. Make sure that the ChallengeResponseAuthentication set to yes.  

3. Save the file.  

4. Restart the sshd service.For example on RHEL 7.x, the following command could be used:
 
systemctl restart sshd
 

Note: 

Centrify Enabled OpenSSH has the ChallengeResponseAuthentication setting set to yes by default.

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.