Why can't I log in as 'root' over SSH if I disable the 'admin' user?

scilek · Apr 3, 2022, 6:37 PM

@nollipfsense
That was not the case prior to version 2.6.

NollipfSense · Apr 3, 2022, 6:41 PM

@scilek said in Why can't I log in as 'root' over SSH if I disable the 'admin' user?:

@nollipfsense
That was not the case prior to version 2.6.

It has been since I joined pfSense just prior to v2.4.

viragomann · Apr 3, 2022, 6:43 PM

@scilek
Go to System > User Manager > Users > admin and remove the WebCfg privileges from the user.

ptt · Apr 3, 2022, 6:45 PM

@scilek said in Why can't I log in as 'root' over SSH if I disable the 'admin' user?:

@nollipfsense
That was not the case prior to version 2.6.

https://forum.netgate.com/topic/169323/2-6-0-rc-bugs/6

scilek · Apr 3, 2022, 6:45 PM

@nollipfsense
I just connected to a router running version 2.5.2 to check. The admin user is disabled but I can still log in as root over SSH.

scilek · Apr 3, 2022, 6:48 PM

@viragomann
I did that, but I can still log in to the web interface as admin.

NollipfSense · Apr 3, 2022, 7:01 PM

@ptt said in Why can't I log in as 'root' over SSH if I disable the 'admin' user?:

@scilek said in Why can't I log in as 'root' over SSH if I disable the 'admin' user?:

@nollipfsense
That was not the case prior to version 2.6.

https://forum.netgate.com/topic/169323/2-6-0-rc-bugs/6

Okay, learned something new today as I have always used admin for webGUI and SSH.

rcoleman-netgate · Apr 3, 2022, 11:27 PM

@scilek And it was fixed in v2.6/22.01

stephenw10 · Apr 4, 2022, 2:36 PM

Just to be clear this was a bug in versions prior to 2.6:
https://redmine.pfsense.org/issues/12346

You should never have been able to login using a disabled account via SSH. It's now fixed.

Steve

scilek · Apr 4, 2022, 2:44 PM

@stephenw10
It was the most convenient bug in the history of computing.