SYSTMBX

Home >> Solaris >> Configuring Password-less SSH Access For Root In Solaris

Configuring Password-less SSH Access For Root In Solaris

( 0 Votes )

How To - Solaris

Written by Christian Foronda

Thursday, 11 November 2010 10:28

warning:Enabling root login without a password can be a security risk!

Then, configure ssh to allow passwordless root login:

	$ sudo su -
	# vi /etc/ssh/sshd_config

Modify:

	PermitRootLogin no

	PermitRootLogin without-password

Restart ssh service:

	# svcadm disable -st ssh ; svcadm enable ssh

Generate certificat on client host:

	# ssh-keygen -t dsa
	Generating public/private dsa key pair.
	Enter file in which to save the key (//.ssh/id_dsa): 
	Enter passphrase (empty for no passphrase): 
	Enter same passphrase again: 
	Your identification has been saved in //.ssh/id_dsa.
	Your public key has been saved in //.ssh/id_dsa.pub.
	The key fingerprint is:
	93:6e:81:92:93:4d:95:73:3c:cc:f1:31:5b:15:f9:0b root@clienthost

Copy the certificate to remote host:

	# cat ~/.ssh/id_dsa.pub
	ssh-dss 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 root@clienthost
	# ssh user@serverhost
	$ sudo su -
	# touch ~/.ssh/authorized_keys
	# chmod 600 ~/.ssh/authorized_keys
	# echo "ssh-dss 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 root@clienthost" > ~/.ssh/authorized_keys

You may now login as root to serverhost without prompting for password

Similar articles

blog comments powered by Disqus

< Prev		Next >

Joomla SEO powered by JoomSEF

SYSTMBX is on Facebook!

Please like my Facebook Page. So I know you appreciate what I'm doing. Thanks! :)

Similar articles