Received: from malur.postgresql.org ([217.196.149.56])
	by arkaria.postgresql.org with esmtps
 (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.92)
	(envelope-from <pgsql-admin-owner+archive@lists.postgresql.org>)
	id 1nk8EM-0001ov-PN
	for pgsql-admin@arkaria.postgresql.org; Thu, 28 Apr 2022 17:47:06 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.92)
	(envelope-from <pgsql-admin-owner+archive@lists.postgresql.org>)
	id 1nk8EL-0000XP-LE
	for pgsql-admin@arkaria.postgresql.org; Thu, 28 Apr 2022 17:47:05 +0000
Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29])
	by malur.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.92)
	(envelope-from <linux.il@gmail.com>)
	id 1nk8EL-0000XG-BE
	for pgsql-admin@lists.postgresql.org; Thu, 28 Apr 2022 17:47:05 +0000
Received: from mail-lf1-x135.google.com ([2a00:1450:4864:20::135])
	by magus.postgresql.org with esmtps (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128)
	(Exim 4.92)
	(envelope-from <linux.il@gmail.com>)
	id 1nk8EI-0003ih-IU
	for pgsql-admin@lists.postgresql.org; Thu, 28 Apr 2022 17:47:04 +0000
Received: by mail-lf1-x135.google.com with SMTP id w1so9953023lfa.4
        for <pgsql-admin@lists.postgresql.org>;
 Thu, 28 Apr 2022 10:47:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20210112;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=inKeo03zny2NPmnpPHZuNSFVKdu20WQgbXNbddks2D0=;
        b=NDxWRoRGHlTe9H7F3w1fZ4BG5RQqSUUoNce8VSx3ONmrGnM/fHeMHEksX/FuSOkQLX
         NJdWTJv1JzLf4OwxSBtgYM33+MpS/CAAxAyzYIKlQP8HRYMmJH5oxvgyIDZgpBhMJfiD
         VlnvtfnpfOjzVovcI4A1Yio7IEAxZf57d1Iy8p+OVyZUOZVnpe+bJM0ZzOLjvw2q9wGI
         dTh3xzLh8vUaiwxBVCZey0z6WV5IGlIzbchXYh3aKa/sIrPeVW3jDLYtqZCDZCr2R6pC
         EfTufjbnW/2QsJno/oL77kinlHz/JDqVtdXvpqj+GaVw6wDRwIg0lS0gYZe6mNwodWEY
         ebQg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=inKeo03zny2NPmnpPHZuNSFVKdu20WQgbXNbddks2D0=;
        b=Ss1RCxKth1OH8hQyUUDz4ZGfq1I+TggnkjkpVEXEvV85a8Q/AtlYiUujPX/mvbYmUX
         5+rxtBrIYg4XWkdnZzdSdwEqBHgA4XnUbQKU7vDhGZxed872GmjvaA5VkVV9lNHikAsf
         OHZ8y+21BQl9jXbVlrkYGjPtJC0Te3bcLI02L98Tl4U1nbbcpXi1nwfsNDERGRXgLp08
         wdK5htJ978uPrJ/RkLgmN3HuBWUClwnR3JomD/8TqOx+x2bVgbpL2UlVnYrKNZVohwrs
         8EF/Mj7e9TpxEb4D79b86ywTaR1roXlirazH+UiOeAGV0H1c0qJ/X8Br3gszLGkTf6Wa
         1hRQ==
X-Gm-Message-State: AOAM530vWQ4am4iBSYLv9EVZEjt8+iNtHKL8dqoIWOss0w1olfI2tiFs
	+9/wTGq2kiOZexgJOeVw5n4uee0DwOjUc31T/Vw=
X-Google-Smtp-Source: 
 ABdhPJwK8DzLTxLn9uVppuxVARe+X+T086uFSB4nwHP9kUvhEpGmJTzkEn+CWyOzb+BanPUHcuURByWDj9dtxVmxxd0=
X-Received: by 2002:ac2:5f4d:0:b0:43e:da3e:4529 with SMTP id
 13-20020ac25f4d000000b0043eda3e4529mr24616719lfz.627.1651168021788; Thu, 28
 Apr 2022 10:47:01 -0700 (PDT)
MIME-Version: 1.0
References: 
 <CANpTS00WCqqCC4aMtOgKJ79RT-9r_fWQYPSkKuGDYWuKzaf-kA@mail.gmail.com>
 <CAMkU=1wZXRyKmaSOuxZ0GpOHUx4F8TKGetKr+JuaUKovS10H7g@mail.gmail.com>
In-Reply-To: 
 <CAMkU=1wZXRyKmaSOuxZ0GpOHUx4F8TKGetKr+JuaUKovS10H7g@mail.gmail.com>
From: "linux.il" <linux.il@gmail.com>
Date: Thu, 28 Apr 2022 20:46:50 +0300
Message-ID: 
 <CANpTS03keBuQAn9yZLTrqPTd7sEoK0Hyx4uReHDd2Nk4vUjoJg@mail.gmail.com>
Subject: Re: Weird GSSAPI error - trying to connect via SSH tunnel
To: Jeff Janes <jeff.janes@gmail.com>
Cc: Pgsql-admin <pgsql-admin@lists.postgresql.org>
Content-Type: multipart/alternative; boundary="000000000000673b0e05ddba8307"
List-Id: <pgsql-admin.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgsql-admin@lists.postgresql.org>
List-Owner: <mailto:pgsql-admin-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgsql-admin>
Archived-At: 
 <https://www.postgresql.org/message-id/CANpTS03keBuQAn9yZLTrqPTd7sEoK0Hyx4uReHDd2Nk4vUjoJg%40mail.gmail.com>
Precedence: bulk

--000000000000673b0e05ddba8307
Content-Type: text/plain; charset="UTF-8"

Jeff,
Many thanks! It indeed was my case - I tried to use the wrong password and
was confused by this error message.
Vitaly

On Thu, Apr 28, 2022 at 6:18 PM Jeff Janes <jeff.janes@gmail.com> wrote:

> On Thu, Apr 28, 2022 at 5:57 AM linux.il <linux.il@gmail.com> wrote:
>
>> Hi,
>> I'm trying to connect to AWS RDS instance with private IP using SSH
>> tunnel.
>> I have no problems with network/credentials - I tested SSH tunnel to my
>> Postgres server using command-line, and I was able to connect.
>> But no luck with PgAdmin  - I'm getting a GSSAPI error message (sorry for
>> screenshot, but Pgadmin for Mac doesn't allow me copy-paste text).
>>
>
> That is just log spam.  Since it found GSS credentials in the local
> environment, that is the first thing it tried.  But it failed, probably
> because the server didn't want to use it.  So then it moved on to the next
> method, which was password auth, and that also failed.That is the real
> error.  Look in the server log file to possibly get more details on that
> failure.  The error sent to unauthenticated users is intentionally vague to
> avoid leaking information.
>
> Cheers,
>
> Jeff
>
>

--000000000000673b0e05ddba8307
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">Jeff,<div>Many thanks! It indeed was my case - I tried to =
use the wrong password and was confused by this error message.</div><div>Vi=
taly</div></div><br><div class=3D"gmail_quote"><div dir=3D"ltr" class=3D"gm=
ail_attr">On Thu, Apr 28, 2022 at 6:18 PM Jeff Janes &lt;<a href=3D"mailto:=
jeff.janes@gmail.com">jeff.janes@gmail.com</a>&gt; wrote:<br></div><blockqu=
ote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px=
 solid rgb(204,204,204);padding-left:1ex"><div dir=3D"ltr"><div dir=3D"ltr"=
>On Thu, Apr 28, 2022 at 5:57 AM <a href=3D"http://linux.il" target=3D"_bla=
nk">linux.il</a> &lt;<a href=3D"mailto:linux.il@gmail.com" target=3D"_blank=
">linux.il@gmail.com</a>&gt; wrote:<br></div><div class=3D"gmail_quote"><bl=
ockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-lef=
t:1px solid rgb(204,204,204);padding-left:1ex"><div dir=3D"ltr">Hi,<div>I&#=
39;m trying to connect to AWS RDS instance with private IP using SSH tunnel=
.=C2=A0<br>I have no problems with network/credentials - I tested SSH tunne=
l to my Postgres server using command-line, and I was able to connect.<br>B=
ut no luck with PgAdmin=C2=A0 - I&#39;m getting a GSSAPI error message (sor=
ry for screenshot, but Pgadmin for Mac doesn&#39;t allow me copy-paste text=
).<br></div></div></blockquote><div><br></div><div>That is just log spam.=
=C2=A0 Since it found GSS credentials in the local environment, that is the=
 first thing it tried.=C2=A0 But it failed, probably because the server did=
n&#39;t want to use it.=C2=A0 So then it moved on to the next method, which=
 was password auth, and that also failed.That is the real error.=C2=A0 Look=
 in the server log file to possibly get more details=C2=A0on that failure.=
=C2=A0 The error sent to unauthenticated users is intentionally vague to av=
oid leaking information.</div><div><br></div><div>Cheers,</div><div><br></d=
iv><div>Jeff</div><div>=C2=A0</div></div></div>
</blockquote></div>

--000000000000673b0e05ddba8307--