Unable to ssh with tailscale

[Frankzhang854]

Please ask, I have enabled tailscale ssh on one of the headscale clients, and headscale is also configured with ACL. I don’t know why it still prompts Permission denied (tailscale)

acls:
  - action: accept
    src:
      - "frank"
    dst:
      - "*:*"
      - "frankxin:*"
  - action: accept
    src:
      - "frankxin"
    dst:
      - "frankxin:*"
ssh:
  - action: check
    src:
      - "frank"
    dst:
      - "*:*"
      - "frankxin:*"
    user:
      - "some-allowlisted-user"
    checkPeriod: 8h
  - action: check
    src:
      - "frankxin"
    dst:
      - "*:*"
      - "frank:*"
    user:
      - "some-allowlisted-user"
    checkPeriod: 8h
disableIPv4: false
randomizeClientPort: false

Version of headscale used: v0.21.0
Version of tailscale client: 1.38.2
OS (e.g. Linux, Mac, Cygwin, WSL, etc.) and version: macOS Ventura

[loprima-l]

Hi, I don't think that Headscale supports the ssh like Tailscale now, just use ACLs and normal ssh login should work. Let me know !

[mattcen]

This is related to #661 :)

[kradalby]

@Frankzhang854 can you try the code in #1487?

[github-actions]

This issue is stale because it has been open for 90 days with no activity.

[github-actions]

This issue was closed because it has been inactive for 14 days since being marked as stale.