Be seen. Boost your question’s priority for more expert views and faster solutions
Block password authetication on specific user on Linux
Hi,
I need to block password authentication for only specific users on Linux server, and leave key
option only. User can't be blocked to use password for other protocols like ftp
All changes should be done in sshd_config file
For UNIX I use following but it block all users on Linux
PasswordAuthDenyUsers user1 user2 user3
ChallRespAuthDenyUsers [pam] user1 user2 user3
Thanks
I need to block password authentication for only specific users on Linux server, and leave key
option only. User can't be blocked to use password for other protocols like ftp
All changes should be done in sshd_config file
For UNIX I use following but it block all users on Linux
PasswordAuthDenyUsers user1 user2 user3
ChallRespAuthDenyUsers [pam] user1 user2 user3
Thanks
Asked:
1 Solution
LVL 27
create a group for your user in sshd_conf and deny whatever types of authentication you need in that group
I believe the following should work on your linux system.
Create a group named keyonly and put your users in it.
Then add the following to /etc/ssh/sshd_config
Match Group keyonly
PasswordAuthentication no
ChallengeResponseAuthentic
You could also just match individual users.
Match User User_Name
Create a group named keyonly and put your users in it.
Then add the following to /etc/ssh/sshd_config
Match Group keyonly
PasswordAuthentication no
ChallengeResponseAuthentic
You could also just match individual users.
Match User User_Name
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
Featured Post
Tackle projects and never again get stuck behind a technical roadblock.
Join Now