Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pfsense 2.0.1 - SSH prompting for password with disable password checked

    Scheduled Pinned Locked Moved General pfSense Questions
    6 Posts 4 Posters 3.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      miles267
      last edited by

      Was hoping someone might be able to assist.  I have SSH access to my pfsense box working.  Also under SYSTEM > ADVANCED > ADMIN ACCESS, the option:

      Authentication Method - Disable password login for Secure Shell (RSA key only) is CHECKED.

      However, when use PUTTY to initiate an SSH connection to my pfsense box, I am prompted for both a username AND password.

      1.) I thought it wasn't supposed to prompt for a password, but rather use the key only?
      2.) I am only able to access SSH if I enter the 'admin' user.  should I be able to login with another, non-admin account?

      1 Reply Last reply Reply Quote 0
      • P
        podilarius
        last edited by

        Have you tried to reboot after making that kind of change?

        1 Reply Last reply Reply Quote 0
        • M
          miles267
          last edited by

          @podilarius:

          Have you tried to reboot after making that kind of change?

          Yes.  Actually the DISABLE PASSWORD (USE RSA KEY) option has always been enabled.

          1 Reply Last reply Reply Quote 0
          • T
            thermo
            last edited by

            You need to tell putty the default username to use and the location of the private key associated with the public key you pasted into the user manager on pfsense. if your private key has a password,you will be prompted for it.
            You can create another user in the user manager and login with that as Issh username

            1 Reply Last reply Reply Quote 0
            • M
              miles267
              last edited by

              @thermo:

              You need to tell putty the default username to use and the location of the private key associated with the public key you pasted into the user manager on pfsense. if your private key has a password,you will be prompted for it.
              You can create another user in the user manager and login with that as Issh username

              Thanks - that worked.  Is a pass phrase necessary for the key?  I've found how to have putty auto-enter the username and, without a pass phrase on the key, this automates the entire login.  Otherwise, I couldn't tell how to get putty to automate both the username AND password in the event my key had a password/pass phrase.

              1 Reply Last reply Reply Quote 0
              • D
                dhatz
                last edited by

                @miles267:

                Thanks - that worked.  Is a pass phrase necessary for the key?

                Well, technically it's not required, but it's a good practice security-wise to keep keys password protected.

                If you do a lot of logins/logouts throughout the day, then you could use Pagent (in case of putty).

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.