Hi All,Could anyone assist on below error (from jcs logs) when we trying to add unix endpoint through provisioning manager.2023-04-10 13:23:55,465 47723641 [ApacheDS Worker-thread-66] UNIX_v2_ (UnixServerSessionImpl.java:179) ERROR - IOException, while connecting to endpoint server: Cannot read full block, EOF reached.java.io.IOException: Cannot read full block, EOF reached. at ch.ethz.ssh2.crypto.cipher.CipherInputStream.getBlock(CipherInputStream.java:90)[162:com.ca.jcs.unix:126.96.36.19910219] at ch.ethz.ssh2.crypto.cipher.CipherInputStream.read(CipherInputStream.java:119)[162:com.ca.jcs.unix:188.8.131.5210219] at ch.ethz.ssh2.transport.TransportConnection.receiveMessage(TransportConnection.java:256)[162:com.ca.jcs.unix:184.108.40.20610219] at ch.ethz.ssh2.transport.TransportManager.receiveLoop(TransportManager.java:413)[162:com.ca.jcs.unix:220.127.116.1110219] at ch.ethz.ssh2.transport.TransportManager.access$400(TransportManager.java:44)[162:com.ca.jcs.unix:18.104.22.16810219] at ch.ethz.ssh2.transport.TransportManager$1.run(TransportManager.java:219)[162:com.ca.jcs.unix:22.214.171.12410219] at java.lang.Thread.run(Unknown Source)[:1.8.0_201]2023-04-10 13:23:55,481 47723657 [ApacheDS Worker-thread-66] UNIX_v2_ (UnixServerSessionImpl.java:286) ERROR - LdapServiceUnavailableException: Cannot read full block, EOF reached.org.apache.directory.shared.ldap.exception.LdapServiceUnavailableException: Cannot read full block, EOF reached.Thanks,Atifah
Hi,Anyone have encounter this error when try to register through provisioning manager? Did clarify with the server owner and the device is up and running fine.Thanks,Atifah
The IGA Unix connector v2 uses the JCS (Java Connector Server) to open a SSH tunnel to the Unix hosts. If there is a banner or other solution deployed on the Unix host, it is possible they may be impacting the ssh login process, which may impact how the IMPS server is able to interpret information from the unix endpoint.
To assist with troubleshooting, besides the JCS debug log (as the ssh client), you can enable debug on the Unix host for the SSHD service (server side).
Restart the SSHD service, and monitor the login process. You may wish to use putty to login as the 'clean' test to compare with jcs.
Example of recording your ssh session with Unix script.
On the vApp, using the config service ID, generate a new SSH key, then edit the .ssh/authorized_keys file.
Below is a modified version of the script provided by John Simpson to trace any remote SSH session using the 'config' service ID on the vApp.
Please note, this can generate a large log file if you are using a SSH client such as MobaXterm, that has the monitoring process auto-enabled (toolbar - using background process after you ssh into your host).
Original Message:Sent: Apr 12, 2023 04:46 AMFrom: Atifah Abdul LatifSubject: Error prompted when adding unix endpoint through provisioning manager
Hi AtifahPlease confirm the exact version and CP you are running.Thank youRinat