Comments (10)
Could you try if IapDesktop-2.14.566.msi.zip fixes the issue for you? This build should now properly handle SSH metadata key entries that have an empty username.
Also, thanks for the feature suggestion. I agree that for large projects, a search/filtering feature could be helpful.
from iap-desktop.
Thanks for reporting this issue. The message is a bit non-descriptive, but the problem seems to be that your project's common instance metadata contains one or more SSH keys that does not quite follow the expected format, so IAP Desktop fails to parse it. It could be as simple as a whitespace issue, but maybe there's something else.
Could you take a look at the ssh-keys
common instance metadata entry of your project and check if there's anything special about it? You can query the common instance metadata by running gcloud compute project-info describe --project [project]
.
It would be most helpful if you could share the content of the ssh-key
entry -- but the content is sensitive, so you'd have to scrub the actual public keys and usernames first.
from iap-desktop.
Version 2.14.565 (released today) should be a bit more forgiving w.r.t. metadata keys containing redundant whitespace and the error message now indicates which key could not be parsed. Could you give this version a try and see if the problem persists?
from iap-desktop.
Thanks for the response. After the version update now am getting the below error.
Please find the ssh-keys content which i have scrubbed. I have validated the other project keys also. This looks the same. For your information we have multiple projects in our Gcloud. I am able to access other projects VM. But only one project VM's are not accessible.
AAAAB3NzaC1yc2EAA...
from iap-desktop.
Thanks for sharing the screenshot.
The format for SSH keys should be [username]:ssh-rsa [key]...
-- interestingly, the username is empty (:ssh-rsa AAA...
) in your case. I am not sure how that can happen, and I am pretty sure that such a "no-username" key cannot be used for anthing -- but tools like gcloud seem to be more forgiving than IAP Desktop when encountering them.
The quick solution would be to go to the Cloud Console and remove (and maybe re-add) the key.
I will update IAP Desktop to ignore such keys in the next release.
from iap-desktop.
Thanks! Removed the key and tried accessing the VM. Still same error. I have cross verified the keys with other projects and i don't see any difference in the keys. Am not sure from where the key is getting fetched for this project.
When can i except the next release? IAP Desktop is user friendly than using gcloud SDK and command line.
from iap-desktop.
Maybe check the VM instance metadata too -- it's possible that it also contains SSH keys (if the block project-level SSH keys option was set at any point in time). FWIW, IAP Desktop does not cache any keys.
I'll share a new build of IAP Desktop with you once I've implemented a fix so that you do not have to wait for the next release.
from iap-desktop.
Thanks! We will check the VM instance specific metadata.
And also we have more than 200+ VM instances, Is it possible to implement a search/find functionality using VM name or any sort functionality in Project Explorer window. Find functionality using VM name or part of VM name with wildcard would be more helpful.
from iap-desktop.
Thanks a lot for the fix. The issue is resolved now and am able to access the VM's. :)
It would be helpful if the search feature is introduced as soon as possible.
from iap-desktop.
Thanks for the quick feedback, happy to hear that this fixed the problem. I will close this issue then.
I've added the search feature to our backlog and added an issue. It does require a few other things to be changed first however, so I cannot make any promises about timing yet.
from iap-desktop.
Related Issues (20)
- Feature Request - Terminal Logging/Export HOT 3
- Feature request: oslogin with workforce identity HOT 4
- Provide a way to change the default profile. HOT 5
- Unable To Add Project I Don't Own HOT 4
- Feature request: specify local port number for SSH tunnels. HOT 3
- Enhancement request: selecting VM on left panel brings it to focus on right panel HOT 2
- Getting "System ran out of resources. Consider disabling bitmap caching." after >~3 concurrent sessions open HOT 4
- Disabling "Generate New Windows logon Credentials" HOT 3
- SSH: Prompt for username, password when not specified in connection settings HOT 9
- Authentication using Microsoft Account HOT 2
- Using IAP Desktop to create the tunnel for VSCode Remote development HOT 1
- Cannot SSH to a compute engine VM with IAP-Desktop HOT 2
- Filles download option for IAP Windows VM HOT 1
- Recommendations to harden IAP access and jumpbox server (Windows Server)
- SSH Username Field Does Not Allow Period Character HOT 3
- Cannot access google cloud project HOT 2
- Feature Request: Add equivalent option for "mstsc.exe /admin" switch HOT 7
- Not able to paste from clipboard into windows server in IAP desktop HOT 3
- System.OutOfMemoryException HOT 1
- Organization-based VM Access Filtering HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from iap-desktop.