stackoom
  简体   繁体   中英

ssh password authentication for one user, public key for other user

 原文  2020-08-06 09:51:23       security/ ssh/ server/ command-line-interface

Question

I know of the option

PasswordAuthentication yes

inside /etc/ssh/sshd_config . Is it possible to set this per user? My goal is to have one user with root privileges to only login with a public key, not through a password. And another user with lower privileges to login with a password, not requiring a public key.

1 answers

solution1
 0 ACCPTED  2020-08-06 20:52:02

sshd_config includes the option Match , which allows to start a conditional block 

Match User user1
PasswordAuthentication yes
Match all
Other rules

You can add different conditional rules that way.
For instance, allow only user1, from a specific IP:

Match Address 192.168.1.20
AllowUsers user1

Once you have modified the sshd_config:

systemctl restart sshd
systemctl status sshd

And you can test your setup.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to get current user's ssh public key from the Linux ssh server? What causes ssh client to claim password is a possible authentication but then not prompt the user for the password before rejecting the login? JWT with user password in key Hashing password in javascript for user authentication User authentication with no password but certificate instead? Storing user password in PHP for RESTful API authentication oauth for authentication end user using password flow User registration and signup using private and public key Public key cryptography with user-chosen passwords? Encrypting key passphrase with user password - bad idea?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM