This is the mail archive of the cygwin mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: How do I run sshd as a particular user?

From: "Larry Hall (Cygwin)" <reply-to-list-only-lh at cygwin dot com>
To: cygwin at cygwin dot com
Date: Fri, 28 Mar 2008 11:13:14 -0400
Subject: Re: How do I run sshd as a particular user?
References: <D06D8751-81CE-408B-931B-66DA714FE1CC@von-campe.com> <47C4A0DB.6020007@cygwin.com> <6ADC05D7-7602-4123-81EF-1DE06D26E91F@von-campe.com> <D1627F08-4387-4C0A-94B2-5AFC6C1EA325@von-campe.com>
Reply-to: cygwin at cygwin dot com

Alfred von Campe wrote:

[I'm reposting this with a couple of corrections/clarifications and also to raise its visibility since I didn't get any responses last time :-)]

It's been a month since Larry Hall replied to my last post on this topic (thanks, BTW), and this issue has bubbled up to the top again. I have tried various ways to get the sshd service started as a domain user (instead of the default local user "sshd_server") and can not get it to work. What is the correct syntax to specify a domain user with cygrunsrv? This is what I have tried:

cygrunsrv -I sshd -u "DOMAINNAME\USERNAME" -w PASSWORD -d "CYGWIN sshd" -p /usr/sbin/sshd -a -D -e "CYGWIN=bin tty smbntsec" -y tcpip

This successfully installs the service, and if I look at it in the Services control panel, it shows the correct username (DOMAIN\USERNAME), but if I try to start the service I always get the error "The Cygwin sshd service in Local Computer started and then stopped". If I substitute sshd_server for the user and supply the correct password, the sshd service starts correctly. But I want to start the service as a domain user so that I can access network shares and resolve some build issues with Visual Studio that are apparently caused by not being fully authenticated.


Does it have to be a domain user?  If not, create a local one and give it
the permissions outlined in '/usr/share/doc/cygwin/openssh.README' from the
"Important note for windows 2003 Server users:" section.  Or just look at
what '/bin/ssh-host-config' does.  If it has to be a domain user for some
reason, I guess you can try the above on the machine in question for that
user but I really don't know enough about how domain user permissions can
(or can't) be augmented on local machines to say how this will work (and I
don't have a domain to test against currently).

--
Larry Hall                              http://www.rfk.com
RFK Partners, Inc.                      (508) 893-9779 - RFK Office
216 Dalton Rd.                          (508) 893-9889 - FAX
Holliston, MA 01746

_____________________________________________________________________

A: Yes.
> Q: Are you sure?
>> A: Because it reverses the logical flow of conversation.
>>> Q: Why is top posting annoying in email?

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

References:
- Re: How do I run sshd as a particular user?
  - From: Alfred von Campe
- Re: How do I run sshd as a particular user?
  - From: Alfred von Campe

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]