Recently created rpm package from OpenSSH 6.7 tar ball package. After successfully creating rpm and upgrading the OpenSSH server, met with issue – error: Could not get shadow information for root .
Given below is some section of the error found in messages log (/var/log/messages)

Jan 17 11:21:17 localhost systemd: Started SYSV: OpenSSH server daemon.
Jan 17 11:21:26 localhost sshd[6426]: Connection closed by 192.168.56.1 [preauth]
Jan 17 11:21:29 localhost sshd[6443]: error: Could not get shadow information for root
Jan 17 11:21:29 localhost sshd[6443]: Failed password for root from 192.168.56.1 port 51041 ssh2

The issue was coming due to use to user’s password which we have set in system. Here, we were using root user and password should be checked from shadow file. Hence, the pam file (/etc/pam.d/sshd) also play role here.

The conclusion is enable the UsePAM parameter in sshd_config.

Now we will enable the UsePAM parameter in /etc/ssh/sshd_config file.
Search for keyword UsePAM in /etc/ssh/sshd_config and make it yes.

vi /etc/sshd/sshd_
..
UsePAM yes
..

Now restart the sshd service.

systemctl restart sshd

Try once again doing ssh from remote server. I hope the issue will be resolved. If still facing issue, check the /var/log/messages and /etc/ssh/secure log for more troubleshooting.

Articles

Install and configure transparent squid proxy server : RHEL/CentOS 6.x
create and delete user in Red Hat and CentOS
How to install ssh server on Ubuntu
Ubuntu / Debian : sshd error could not load host key
How to create OpenSSH rpm package and its upgrade
error: Could not load host key
Protect ssh with Google Authenticator on Ubuntu 14.04 LTS
Install Openssh server on Ubuntu Desktop / Server
CentOS 7 / RHEL 7 : change OpenSSH port number ( SELINUX enabled )
How to configure multiple mysql instance in Ubuntu
RSA key authentication in Linux : Passwordless login
Centralize authorized_keys file on Linux / Unix system
Root Is Not Able To Login In Red Hat And CentOS
Find installed and enabled apache module in Debian/Ubuntu
Install and configure rsyslog Centralized logging server in CentOS 6.5

Sharad Chhetri is an experienced Linux, DevOps, Cloud Engineer & Freelancer. Working on various technologies since RHEL 4 era. He loves sharing the knowledge which he has earned from his experience.
You can contact him on email for freelance projects at admin@sharadchhetri.com.

Read Some More Articles

ssh public key fingerprint
| | |

How To Get SSH Public Key Fingerprint Information

BySharad Chhetri

Long time ago one of my U.S system admin was very security conscious. He asked me to create id_rsa.pub key in server. I created the key with ssh-keygen -t rsa command. And send it him through encrypted email. Next day he wrote me ,what is the ssh key fingerprint ? First let’s have some introduction….

How to create OpenSSH rpm package and its upgrade

How to create OpenSSH rpm package and its upgrade

BySharad Chhetri

In this tutorial we will create rpm package of OpenSSH version 6.7 stable version and will do OpenSSH upgrade. You may be wondering why it is required to create rpm package of OpenSSH version. The answer is because of CVE-2014-2532 . We recently notified with the CVE-2014-2532 , which is a openssh AcceptEnv environment restriction…

scp command not found in CentOS and Red Hat
|

scp command not found in CentOS and Red Hat

BySharad Chhetri

After doing minimal installation of CentOS 6.3 server ,we were not able to do scp from my client machine to CentOS server.It was simply showing the error – “scp command not found”. This thing has happened earlier when we have used the CentOS 6. When it was occur last time with us in CentOS 6.0…

Install Openssh server on Ubuntu Desktop / Server
|

Install Openssh server on Ubuntu Desktop / Server

BySharad Chhetri

FAQ : How to connect to Ubuntu Desktop / Server by using ssh. I just installed Ubuntu 14.04 LTS Desktop edition and have not found ssh service running in system. Answer : OpenSSH is a FREE version of the SSH connectivity tools. It provides the encrypted communication between computers by using ssh protocol. History of…

CentOS 7 / RHEL 7 : change OpenSSH port number ( SELINUX enabled )

CentOS 7 / RHEL 7 : change OpenSSH port number ( SELINUX enabled )

BySharad Chhetri

The tutorial will explain about how to change default ssh port number in OpenSSH Server on CentOS 7 and RHEL 7 . We will change the SSH default port no. 22 to our desired number and we will keep SELINUX enabled. We will also add new firewalld rule with respect to new ssh port number….

Protect ssh with Google Authenticator on Ubuntu 14.04 LTS

Protect ssh with Google Authenticator on Ubuntu 14.04 LTS

BySharad Chhetri

The tutorial is about how we can protect ssh with Google Authenticator on Ubuntu 14.04 LTS server . Google authenticator is a security application which implements time based one time password (TOTP) security tokens. It is often also called as “Two steps verification” . The server in which Google Authenticator has been setup , to…

One Comment

  1. I changed pam to yes according to what you said,but met with issue:sshd(1209): Failed password for user from ip port *** ssh2(/var/log/messages)

    centos-6.5 openssh-7.5

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.