Authentication with SSH keys

D

dennylin93

I just set up authentication with SSH keys, and I encountered the following problem.

I added this in /etc/ssh/sshd_config:
Code: 
Match User dennylin93
        UsePAM no

When I restarted sshd, this error popped up:
Code: 
/etc/ssh/sshd_config line 128: Directive 'UsePAM' is not allowed within a Match block

Is it possible to specify some users to use SSH keys while the others use PAM authentication?
 
Put a random password on the accounts that are only allowed to use ssh keys.
 
I'd still like to keep the existing passwords on those accounts that use SSH keys though, since they're the ones that use $ sudo su to obtain root privileges.
 
dennylin93 said:
I'd still like to keep the existing passwords on those accounts that use SSH keys though, since they're the ones that use $ sudo su to obtain root privileges.
Click to expand...
That would make random passwords somewhat inconvenient indeed :e

You could try doing it the other way around.

Set UsePAM to no by default and use something like
Code: 
Match Group "!myadmins, users"
 PasswordAuthentication on

Unless you really need to use PAM..
 
You must log in or register to reply here.
Back
Top