SYSTMBX - Configuring Password-less SSH Access For Root In Solaris

You are here: Home //

Tutorials //

Tools & Utilities //

Secure Shell (SSH) //

Configuring Password-less SSH Access For Root In Solaris

Details: Category: Secure Shell (SSH); Last Updated on Thursday, 11 November 2010 10:28; Published on Thursday, 11 November 2010 10:28; Written by chr1x2

View Comments

WARNING: Enabling root login without a password can be a security risk!

1. Login to server you want to ssh as root.

2. Then, configure ssh to allow passwordless root login:

$ sudo su -
# vi /etc/ssh/sshd_config

Modify:

PermitRootLogin no

PermitRootLogin without-password

3. Restart ssh service:

# svcadm disable -st ssh ; svcadm enable ssh

4. Generate certificate on client host:

# ssh-keygen -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (//.ssh/id_dsa): 
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
Your identification has been saved in //.ssh/id_dsa.
Your public key has been saved in //.ssh/id_dsa.pub.
The key fingerprint is:
93:6e:81:92:93:4d:95:73:3c:cc:f1:31:5b:15:f9:0b root@clienthost

5. Copy the certificate to remote host:

# cat ~/.ssh/id_dsa.pub
ssh-dss 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 root@clienthost

# ssh user@serverhost
$ sudo su -
# touch ~/.ssh/authorized_keys
# chmod 600 ~/.ssh/authorized_keys
# echo "ssh-dss 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 root@clienthost" > ~/.ssh/authorized_keys

6. You may now login as root to serverhost without prompting for password.

blog comments powered by DISQUS back to top

Next >

Language Translations

GTranslatemultilingual websitetranslation delivery network

Tutorial Categories

CMS/LMS
- Moodle
Cloud Computing
- Amazon Web Services (AWS)
Command Line
Hacking
Web Servers
- Apache HTTPD
- Apache Tomcat
- Lighttpd
- Nginx
- Varnish
Database Servers
- MariaDB
- MySQL
- PostgreSQL
DNS Servers
- BIND
Mail Servers
- Postfix
- Zimbra
Networking
PBX
- Asterisk
- Trixbox
Programming
- Bash
- Perl
Proxy Servers
- Squid
Security
System Administration
Tools & Utilities
The Web
- Facebook
- Twitter
Webhosting
Virtualization

If you appreciate what I'm doing, please consider buying me a beer. Thanks! :D

Statistics

Visitors: 1
Articles: 132
Web Links: 6
Articles View Hits: 186851

Language Translations

Tutorial Categories

Statistics

Latest Tutorials

Popular Tutorials