You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/devices/howto-vm-sign-in-azure-ad-linux.md
+23-2Lines changed: 23 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -450,10 +450,10 @@ To uninstall old packages:
450
450
451
451
1. Log in as a local user with admin privileges.
452
452
1. Make sure there are no logged-in Azure AD users. Call the `who -u` command to see who is logged in. Then use `sudo kill <pid>` for all session processes that the previous command reported.
453
-
1. Run `sudo apt remove --purge aadlogin` (Ubuntu/Debian), `sudo yum erase aadlogin` (RHEL or CentOS), or `sudo zypper remove aadlogin` (openSUSE or SLES).
453
+
1. Run `sudo apt remove --purge aadlogin` (Ubuntu/Debian), `sudo yum remove aadlogin` (RHEL or CentOS), or `sudo zypper remove aadlogin` (openSUSE or SLES).
454
454
1. If the command fails, try the low-level tools with scripts disabled:
455
455
1. For Ubuntu/Debian, run `sudo dpkg --purge aadlogin`. If it's still failing because of the script, delete the `/var/lib/dpkg/info/aadlogin.prerm` file and try again.
456
-
1. For everything else, run `rpm -e –noscripts aadogin`.
456
+
1. For everything else, run `rpm -e --noscripts aadogin`.
457
457
1. Repeat steps 3-4 for package `aadlogin-selinux`.
458
458
459
459
### Extension installation errors
@@ -511,6 +511,27 @@ One solution is to remove `AllowGroups` and `DenyGroups` statements from *sshd_c
511
511
512
512
Another solution is to move `AllowGroups` and `DenyGroups` to a `match user` section in *sshd_config*. Make sure the match template excludes Azure AD users.
513
513
514
+
### Getting Permission Denied when trying to connect from Azure Shell to Linux Red Hat/Oracle/Centos 7.X VM.
515
+
516
+
The OpenSSH server version in the target VM 7.4 is too old. Version incompatible with OpenSSH client version 8.8. Refer to [RSA SHA256 certificates no longer work](https://bugzilla.mindrot.org/show_bug.cgi?id=3351) for more information.
517
+
518
+
Workaround:
519
+
520
+
- Adding option `"PubkeyAcceptedKeyTypes= [email protected]"` in the `az ssh vm ` command.
521
+
522
+
```azurecli-interactive
523
+
az ssh vm -n myVM -g MyResourceGroup -- -A -o "PubkeyAcceptedKeyTypes= [email protected]"
524
+
```
525
+
- Adding the option `"PubkeyAcceptedKeyTypes= [email protected]"` in the `/home/<user>/.ssh/config file`.
526
+
527
+
528
+
Add the `"PubkeyAcceptedKeyTypes [email protected]"` into the client config file.
0 commit comments