Inspec -t ssh not possible

moep_moep · March 2, 2018, 2:45pm

Hey there,

I'm trying to setup inspec over ssh.
What I already did:

SSH-Key is deployed on the server under [username]
installed inspec
created alias: alias inspec='docker run -it --rm -v $HOME:/share chef/inspec'

$ inspec version
2.0.32

inspec exec linux-baseline/ -t ssh://[username]@[ip]:[ssh-port] -i ~/.ssh/[pathtokey]/name_id_rsa --debug -l debug

Inspec says:

D, [2018-03-02T14:33:27.401995 #1] DEBUG -- : [SSH] [username>@[ip>
[{:user_known_hosts_file=>"/dev/null", :port=>[ssh-port], :compression=>false, :compression_level=>0,
:keepalive=>true, :keepalive_interval=>60, :timeout=>15, :auth_methods=>["none", "publickey"],
:keys_only=>true, :keys=>["/home/[user]/.ssh/[pathtokey]/name_id_rsa"], :password=>"[hidden>",
:forward_agent=>nil, :verify_host_key=>false}> (uname -s)

Server says:

Mar 2 15:33:02 [hostname] sshd[17147]: Connection from inspect-runner] port 58568 on [ip] port [ssh-port]
Mar 2 15:33:02 [hostname] sshd[17147]: Connection closed by [inspect-runner] port 58568 [preauth]strong text

jdunn · March 8, 2018, 4:40pm

You are sharing $HOME into /share in the Docker container but the user that InSpec runs under in the container is root so its home directory is /root which means that ssh will look for keys under /root/.ssh

Topic		Replies	Views
Using ssh with Inspec via the docker container Chef InSpec	2	1973	June 23, 2018
Chef inspec authetication error Chef InSpec	1	897	January 16, 2018
How to run inspec exec with ssh Chef InSpec	4	13403	April 4, 2016
[RESOLVED] How can we run inspec file in Remote Machine(Linux) from workstation Chef InSpec	1	2439	March 14, 2017
Using kitchen-ssh driver to run Inspec tests on remote node Chef Infra (archive)	5	3816	July 29, 2016

Inspec -t ssh not possible

Related topics