Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Pfsense 2.0.1 - SSH prompting for password with disable password checked

    General pfSense Questions
    4
    6
    2769
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      miles267 last edited by

      Was hoping someone might be able to assist.  I have SSH access to my pfsense box working.  Also under SYSTEM > ADVANCED > ADMIN ACCESS, the option:

      Authentication Method - Disable password login for Secure Shell (RSA key only) is CHECKED.

      However, when use PUTTY to initiate an SSH connection to my pfsense box, I am prompted for both a username AND password.

      1.) I thought it wasn't supposed to prompt for a password, but rather use the key only?
      2.) I am only able to access SSH if I enter the 'admin' user.  should I be able to login with another, non-admin account?

      1 Reply Last reply Reply Quote 0
      • P
        podilarius last edited by

        Have you tried to reboot after making that kind of change?

        1 Reply Last reply Reply Quote 0
        • M
          miles267 last edited by

          @podilarius:

          Have you tried to reboot after making that kind of change?

          Yes.  Actually the DISABLE PASSWORD (USE RSA KEY) option has always been enabled.

          1 Reply Last reply Reply Quote 0
          • T
            thermo last edited by

            You need to tell putty the default username to use and the location of the private key associated with the public key you pasted into the user manager on pfsense. if your private key has a password,you will be prompted for it.
            You can create another user in the user manager and login with that as Issh username

            1 Reply Last reply Reply Quote 0
            • M
              miles267 last edited by

              @thermo:

              You need to tell putty the default username to use and the location of the private key associated with the public key you pasted into the user manager on pfsense. if your private key has a password,you will be prompted for it.
              You can create another user in the user manager and login with that as Issh username

              Thanks - that worked.  Is a pass phrase necessary for the key?  I've found how to have putty auto-enter the username and, without a pass phrase on the key, this automates the entire login.  Otherwise, I couldn't tell how to get putty to automate both the username AND password in the event my key had a password/pass phrase.

              1 Reply Last reply Reply Quote 0
              • D
                dhatz last edited by

                @miles267:

                Thanks - that worked.  Is a pass phrase necessary for the key?

                Well, technically it's not required, but it's a good practice security-wise to keep keys password protected.

                If you do a lot of logins/logouts throughout the day, then you could use Pagent (in case of putty).

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post