I'm building an SFTP class responsible for listing the files of a remote directory. I'm using the JSch library to do so. I have a user set up already, and I can manually SSH to the remote server just fine. However, when JSch attempts to connect it responds with
com.jcraft.jsch.JSchException: Auth fail
One thing I noticed though; when I manually SSH onto the server, I see that it's using "PAM Authentication." What am I missing?
Properties config = new Properties();
config.put("StrictHostKeyChecking", "no");
Session session = jSch.getSession(username, destination, port);
session.setPassword(password);
session.setConfig(config);
session.connect();
If you are using PAM authentication on server-side, it's probable that you need to implement the keyboard-interactive authentication on client-side.
See What's the difference between “password” and “keyboard-interactive”? question to understand the relation between PAM and keyboard-interactive authentication.
For keyboard-interactive authentication implementation example, see the official UserAuthKI example.
Basically you need to implement the UIKeyboardInteractive interface (together with the UserInfo interface) and associate the implementation with the session using the Session.setUserInfo.
If the authentication is prompting for a single "password" only, implement the UIKeyboardInteractive.promptKeyboardInteractive method to return a single element array with the password.
Obligatory warning: Do not use StrictHostKeyChecking=no to blindly accept all host keys. That is a security flaw. You lose a protection against MITM attacks. For the correct (and secure) approach, see: How to resolve Java UnknownHostKey, while using JSch SFTP library?