Johannes Ernst

Asked: 2015-01-25 19:09:23 +0800 CST2015-01-25 19:09:23 +0800 CST 2015-01-25 19:09:23 +0800 CST

User that can only logon with ssh keys, not password

I'm trying to create a user on a Linux box that can only log on via ssh with a key specified in authorized_keys. The user should not be able to log on via password, neither via ssh nor locally at the console. How would I do this?

Currently I do:

useradd -m myuser
passwd myuser
vi /etc/shadow

and replace the password field with '*'. There must be a better way? If I don't set the passwd first, ssh won't work either saying in the log "User myuser not allowed because account is locked"

2 Answers

Voted

dmourati
2015-01-25T20:15:05+08:002015-01-25T20:15:05+08:00
Give them a password and don't tell them what it is.
1
Best Answer

Alexey Ten
2015-01-25T23:36:49+08:002015-01-25T23:36:49+08:00
passwd -l myuser will effectively disable user password
1

User that can only logon with ssh keys, not password

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?