Is it still necessary to set PasswordAuthentication to no when using an SSH key set in the control panel?

Posted July 23, 2017 2k views
Getting StartedUbuntu 16.04

In this article Etel notes that we can turn off PasswordAuthentication by setting it to no in /etc/ssh/sshd_config after we can successfully authenticate.

If we create a snapshot of droplet where this is allready done, to avoid having to do it every time, will everything still work as expected (Assuming I still have the same SSH keys on the client)?

Also could digital ocean just default this to no, since presumably if we are logging in with SSH, it really should be no?

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
1 answer

Hi @fireflysemantics

When you create a droplet with a SSH key - meaning you won’t receive a password - then it’s already defaulted to PasswordAuthentication no