Disable password, SSH works (Ubuntu)

December 5, 2013 12.9k views
f1dc16eda41571f12bf5d14705a5aef0
By:
f1dc16eda41571f12bf5d14705a5aef0
Hi, I have created a new user (non-root) with SSH key. I can login using SSH key though Pageant. But when i remove my key from Pageant, I am also able to login through my password. I have done the following in /etc/ssh/sshd_config: PasswordAuthentication no UsePAM no Sudo reload ssh What other settings am i missing out to prevent successful password logins?! Thank you!
1 comment
  • thomas07vt December 15, 2015

    I was having the same issue. I did 2 things that which solved my problem (not sure which one did the trick)

    • Restarted my droplet:

    sudo reboot

    • On my client machine, removed my “known_hosts” entry for my server:

    ssh-keygen -f /home/<user>/.ssh/known_hosts -R ip.ip.ip.ip

Log In to Comment
4 Answers
kamaln7 MOD December 5, 2013
I recommend reverting UsePAM to its original value and restarting ssh: 
sudo service ssh restart


Then try logging in with your password.
Reply
gdecris April 25, 2015 
ChallengeResponseAuthentication no
PasswordAuthentication no

sudo service ssh restart
Reply
f1dc16eda41571f12bf5d14705a5aef0 December 5, 2013
Hi Kamal, Sorry seems like I wasn't clear earlier. I am able to login using my password & SSH key. but for higher security, i would like to disable my password and only use SSH key to connect. I've set 'PasswordAuthentication no' and 'UsePAM no' but with these settings, i can still login with my password. Any idea why? thanks :))
Reply
flyingfoxlee March 27, 2014
set ChallengeResponseAuthentication no in /etc/ssh/sshd_config
Reply
Have another answer? Share your knowledge.