Documentation around SSH Keys and Password Auth for Droplets

I’ve been using the DigitalOcean API and specifying SSH keys for my droplets and I saw some posts about disabling password auth, so I went digging and all my droplets had it off already. I assume this is because I specified the SSH keys. Is there documentation specifying this behavior? I would like to have something to point at when asked.

Submit an answer
Answer a question...

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Site Moderator
Site Moderator badge
April 27, 2022

Hi @sebastianchlopecki,

DigitalOcean’s droplets come with Password authentication turned off by default.

As mentioned, in the Documentation @BobbyIliev has sent you, You can manage your Droplets using password-based logins, but we strongly recommend using SSH key pairs instead. SSH keys are more secure than passwords and can help you log in without having to remember long passwords.

I don’t think there is another place apart from where you are creating the Droplet that it’s specified the password authentication to be turned off.

Bobby Iliev
Site Moderator
Site Moderator badge
April 26, 2022


Yes indeed, this is highlighted when creating a new server:

SSH keys screenshot

Also for more information, you can take a look at the documentation here:

Hope that this helps!