Is it still necessary to set PasswordAuthentication to no when using an SSH key set in the control panel?

July 23, 2017 116 views
Getting Started Ubuntu 16.04

In this article https://www.digitalocean.com/community/tutorials/how-to-use-ssh-keys-with-digitalocean-droplets Etel notes that we can turn off PasswordAuthentication by setting it to no in /etc/ssh/sshd_config after we can successfully authenticate.

If we create a snapshot of droplet where this is allready done, to avoid having to do it every time, will everything still work as expected (Assuming I still have the same SSH keys on the client)?

Also could digital ocean just default this to no, since presumably if we are logging in with SSH, it really should be no?

1 Answer

Hi @fireflysemantics

When you create a droplet with a SSH key - meaning you won't receive a password - then it's already defaulted to PasswordAuthentication no

Have another answer? Share your knowledge.