[Contents] [Index]

About This Document>>     Introduction to SSH Secure Shell >>     Configuring SSH Secure Shell >>     Authentication >>     Log Messages         Log Message Reference >>             User Authentication - Common             User Authentication - Host-Based             User Authentication - Keyboard-Interactive PAM             User Authentication - Keyboard-Interactive Password             User Authentication - Keyboard-Interactive             User Authentication - Kerberos TGT             User Authentication - Kerberos             User Authentication - PAM             User Authentication - Password             User Authentication - Public Key             User Authentication - SecurID             Certificate-specific code             SFTP Server             Agent Forwarding             Session Channels             SSH1 Agent Forwarding             Port Forwarding             X11 Forwarding             Common Code             Host Key I/O             General Server Log Messages             SFTP     Using SSH Secure Shell >>     Tool Syntax>>     Technical Specifications >>

User Authentication - Common

Authentication failed

<methodname> authentication failed. Login to account
<loginname> not allowed or account non-existent.

The system administrator has denied logging in for the user, or the user is trying to log in using a non-existent account.

Authentication failed, user does not exist

User <login-name> does not exist.

Authentication failed because the specified user account does not exist.

Authentication failed, system policy doesn't allow user's login

User <login-name>'s login is not allowed due to system
policy

Authentication failed because the system policy does not allow the user to log in. The account may be locked or expired, for example.

Authentication failed, username is on deny list

User <login-name> is denied login because username matched with
deny list.

Authentication failed because the specified user name is included in the server's deny list.

Authentication failed, username not on allow list

User <login-name> is denied login because allow list exists, and 
username was not matched.

Authentication failed because the specified user name is not included in the server's allow list.

Authentication failed, user's group is on deny list

User <login-name> is denied login because user's group is on
group deny list.

Authentication failed because the user's group is included in the server's group deny list.

Authentication failed, user's group is not on group allow list

User <login-name> is denied login because group allow list
exists, and user's group didn't match.

Authentication failed because the user's group is not on the server's group allow list.

Authentication not allowed from a host

<methodname> authentication failed. Connection from <hostname>
denied. Authentication as user <loginname> was attempted.

The server has determined that the user is not allowed to login from the current host.

Authentication not allowed, unable to reverse map hostname

Login not allowed because host's IP address (<ip-address>) could
not be mapped to a host name and reverse mapping is required.

The server could not map the connecting host's IP address to a host name and the configuration option RequireReverseMapping is on.

Authentication not allowed, host is on the deny list

Login not allowed because the connecting host (<hostname>) is on
the server's deny list.

The connecting host is on the server's deny list, so the authentication is not allowed.

Authentication not allowed, host is not on the allow list

Login not allowed because the connecting host (<hostname>) is
not on the server's allow list.

The connecting host is not on the server's allow list, so the authentication is not allowed.