Citrix, NetScaler

NetScaler SSH or SFTP Management Access Not Working – SSH Daemon Not Running

Sometimes, especially when NetScaler appliance has been upgraded from previous much older version, could happen that ssh daemon won’t start anymore. This leads to the issue, that you can’t connect to NetScaler management console via SSH or SFTP anymore. Troublehooting this, log in to the NetScaler virtual appliance console from hypervisor or if physical appliance using console port and go to NetScaler Shell. Let’s see if sshd is running or not;

Run: root@NSVPX01# ps ax | grep sshd

If daemon is running, you’ll see ( my example):

5889 ?? Is 0:00.01 /usr/sbin/sshd -f /etc/sshd_config
5910 ?? Ss 0:00.10 sshd: nsroot@pts/0 (sshd)
5931 ?? Ss 0:20.92 sshd: nsroot@notty (sshd)

But, if you can’t see it running, let’s start to troubleshoot it…

Let’s try to start sshd:

Run: root@NSVPX01# /usr/sbin/sshd –f /etc/sshd_config

In my case I got an error (yours might be different, but sshd config file still could be faulty):

/etc/ssh/sshd_config line 10: Deprecated option UsePrivilegeSeparation

So, I need to edit ssh daemon configuration file in etc/sshd_config, because of NetScaler and not normal Linux OS, we have to use lovely VI editor 🙂

Run: root@NSVPX01# cd /etc/
Run: root@NSVPX01# vi sshd_config

In my case I commented out line: “UsePrivilegeSeparation no” to “#UsePrivilegeSeparation” because The UsePrivilegeSeparation is no longer supported (recent SSHD always runs
with previlege separation), so I removed this option from the default config and saved configuration file.

Then let’s try to start ssh daemon again:

Run: root@NSVPX01# /usr/sbin/sshd –f /etc/sshd_config

And sshd started succesfully!

This was just quick tour to quide troubleshooting SSH Daemon errors 🙂

Btw, if you are looking for those ultimate nasty VI Editor commands, take a look this link:

Views: 886

Jani Kohonen Visit Website
Jani Kohonen is an author of and working as a Citrix Consultant and Architect with 22 years of experience in the IT industry. Jani's been working in the IT industry since 1997 and with Citrix technologies since 2001. He holds several years experience with Microsoft, Citrix, Apple, HP and VMware vendors as well as Server, Application and Desktop virtualization and Mobile technologies. He has done dozens of virtualization design and implementation projects from Small Business to the large global enterprise customers and complex environments. Jani has been awarded as Citrix Technology Advocate (CTA).
Related Posts
XenMobile 10 – Configuration Series Part 4: Cluster Configuration
XenApp and XenDesktop 7.6 now available for download
XenMobile 10 – Configuration Series Part 2: Configuring Remote Licensing

Leave Your Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.