Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Pfsense 2.0.1 - SSH prompting for password with disable password checked

    General pfSense Questions
    4
    6
    2690
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      miles267 last edited by

      Was hoping someone might be able to assist.  I have SSH access to my pfsense box working.  Also under SYSTEM > ADVANCED > ADMIN ACCESS, the option:

      Authentication Method - Disable password login for Secure Shell (RSA key only) is CHECKED.

      However, when use PUTTY to initiate an SSH connection to my pfsense box, I am prompted for both a username AND password.

      1.) I thought it wasn't supposed to prompt for a password, but rather use the key only?
      2.) I am only able to access SSH if I enter the 'admin' user.  should I be able to login with another, non-admin account?

      1 Reply Last reply Reply Quote 0
      • P
        podilarius last edited by

        Have you tried to reboot after making that kind of change?

        1 Reply Last reply Reply Quote 0
        • M
          miles267 last edited by

          @podilarius:

          Have you tried to reboot after making that kind of change?

          Yes.  Actually the DISABLE PASSWORD (USE RSA KEY) option has always been enabled.

          1 Reply Last reply Reply Quote 0
          • T
            thermo last edited by

            You need to tell putty the default username to use and the location of the private key associated with the public key you pasted into the user manager on pfsense. if your private key has a password,you will be prompted for it.
            You can create another user in the user manager and login with that as Issh username

            1 Reply Last reply Reply Quote 0
            • M
              miles267 last edited by

              @thermo:

              You need to tell putty the default username to use and the location of the private key associated with the public key you pasted into the user manager on pfsense. if your private key has a password,you will be prompted for it.
              You can create another user in the user manager and login with that as Issh username

              Thanks - that worked.  Is a pass phrase necessary for the key?  I've found how to have putty auto-enter the username and, without a pass phrase on the key, this automates the entire login.  Otherwise, I couldn't tell how to get putty to automate both the username AND password in the event my key had a password/pass phrase.

              1 Reply Last reply Reply Quote 0
              • D
                dhatz last edited by

                @miles267:

                Thanks - that worked.  Is a pass phrase necessary for the key?

                Well, technically it's not required, but it's a good practice security-wise to keep keys password protected.

                If you do a lot of logins/logouts throughout the day, then you could use Pagent (in case of putty).

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post

                Products

                • Platform Overview
                • TNSR
                • pfSense
                • Appliances

                Services

                • Training
                • Professional Services

                Support

                • Subscription Plans
                • Contact Support
                • Product Lifecycle
                • Documentation

                News

                • Media Coverage
                • Press
                • Events

                Resources

                • Blog
                • FAQ
                • Find a Partner
                • Resource Library
                • Security Information

                Company

                • About Us
                • Careers
                • Partners
                • Contact Us
                • Legal
                Our Mission

                We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                Subscribe to our Newsletter

                Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                © 2021 Rubicon Communications, LLC | Privacy Policy