Sergiy Kolodyazhnyy

Asked: 2016-11-25 11:24:07 +0800 CST2016-11-25 11:24:07 +0800 CST 2016-11-25 11:24:07 +0800 CST

How to block specific username from ssh?

772

I have testuser and I want that user to be able log-in locally, but not via ssh. How can I implement that?

2 Answers

Voted

Best Answer

Artyom
2016-11-25T11:28:33+08:002016-11-25T11:28:33+08:00
Put DenyUsers user1 user2 user3 in /etc/ssh/sshd_config
39
e-Jim
2016-11-26T05:18:36+08:002016-11-26T05:18:36+08:00
Artyom answer is correct. I'd just like to point that there is also the possibility to opt for a 'white-list' approach instead of the 'black-list' one by putting a line like this in /etc/ssh/sshd_config:

AllowUsers AuthorizedUser1 AuthorizedUser2

and reloading ssh service (service ssh restart)

Then every other user will be denied ssh access (be careful not to lock yourself out ;-) )
16

Web Analytics Made Easy - Statcounter