Post a reply

Before posting, please read how to report bug or request support effectively.

Bug reports without an attached log file are usually useless.

Options
Add an Attachment

If you do not want to add an Attachment to your Post, please leave the Fields blank.

(maximum 10 MB; please compress large files; only common media, archive, text and programming file formats are allowed)

Options

Topic review

pattyhak

WINSCP using CAC reader

Yes. So that's the problem. Thanks for your help.
pattyhak

Re: WinSCP using CAC reader

I increased the logging and made new logs. I hope this helps.
martin

Re: WinSCP using CAC reader

That's the same log as before. I'm asking for PuTTY event log. Connect, right-click PuTTY window title and select Event Log.
pattyhak

Re: WinSCP using CAC reader

martin wrote:

Please post full WinSCP session log and PuTTY event log.
martin

PuTTY event log please.
pattyhak

Here are the logs, thank you.
martin

Re: WinSCP using CAC reader

Please post full WinSCP session log and PuTTY event log.
pattyhak

WinSCP using CAC reader

We are using PuTTY 0.76-1 with WinSCP 5.19.2 with CAC readers. We have no problem using PuTTY to prompt for a pin and authenticate against a Linux server. However, we cannot do this with WinSCP, even if we import the sessions from PuTTY.

This is on Windows Desktop 2016, connecting to RHEL 7 and 8 Servers.

When we try to login using WinSCP, it authenticates enough to get the /etc/motd, says that it it is authenticating, "Using username "useruser"", then puts up a password prompt -not a pin prompt. Then WinSCP says "Server refused our key" and "Access denied" and prompts for the password.

On the server side, we get the following in /var/log/secure: "error: PAM: Authentication failure for useruser."

If we use WinSCP to "Open in PuTTY" it works as expected, we are prompted for a pin and we can login without issue.

How can we get WinSCP to work with the CAC reader or use PuTTY to authenticate? Thanks.