-
-
Notifications
You must be signed in to change notification settings - Fork 253
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
After reinstalling OH2.5M5 on openHABian I now have to provide credentials for running openhab-cli console #792
Comments
FYI, I also have to provide the password habopen when running the console after updating from M4 to M5. |
The default Karaf SSH key has been removed in the Karaf master branch for security reasons, see apache/karaf#901. If you'd set the SSH host to a public IP in |
I did not see any change in expected behavior documented in the release warnings. |
The issue is the From the above forum post copying in my findings here for clarity: Found the cause, a change in Karaf 4.2.7 (jaas update?) has meant that encrypting passwords always prompts for password entry. You can test this by installing a standalone version of Karaf, and editing the following line in
In Karaf 4.2.6 I am able to login, however in Karaf 4.2.7 it prompts for a password. openHAB’s default is to set this variable to true ( However, KARAF-5217 implies that should have been in intended from a while back. I do think however that the default password should allow login from the same machine, so perhaps it's worth raising this again? |
Perhaps set the default to unencrypted and just localhost access? Only those wanting remote console access would then need to change the settings and generate ssh keys. |
But openhabian offers a menu entry to make the console available from remote hosts, so this feature would have to be adapted to switch to encrypted mode before we can set it to unencrypted as default. |
Not sure I understand what you want openHABian to do here. According to https://karaf.apache.org/manual/latest/security, So if openhab-cli was to use the default password, it should work. |
@shutterfreak @BClark09 is there anything you want me to change in openhHABian ? |
Not having to put in the password when coming in from the localhost would be a nice to have IMO, but it's not an issue restricted to openHABian so I think we can close the issue. It might be possible for |
Ok, thanks for your feedback. |
I'm running openHAB 2.5 M5 on a Raspberry Pi 3B+ running openHABian Buster.
The upgrade from 2.5 M4 to 2.5 M5 didn't occur without problems, for instance problems installing package
expert-0
. Eventually I decided to reinstall openHAB 2.5 M5 while first pruning theopenhab
package.I ran into 2 problems:
openhab-cli console
from theopenhabian
user account, which I didn't have to prior to 2.5 M4 (Karaf upgrade problem?)Details:
I manually deleted openHAB as follows:
I then reinstalled openHAB again through
openhabian-config
, while first selecting the testing repository (milestone builds).Now I have the following nuisance. Whenever I want to access the Karaf console (through
openhab-cli console
), I have to provide a password.Is there a way to configure my environment so the
openhabian
user could again log in to the Karaf console onlocalhost
without having to request a password?Discussion on OH Community: https://community.openhab.org/t/after-reinstalling-oh2-5m5-on-openhabian-i-now-have-to-provide-credentials-for-running-openhab-cli-console/85734
The text was updated successfully, but these errors were encountered: