Question

Setup SSH keys but server still prompts for password?

Posted September 19, 2012 153k views
Hello, I followed the SSH Keys tutorial here at DO but the server still prompts for my user password (not passphrase) when I login. I checked ~/.ssh/authorized_keys and there is only 1 line so it looks like the key copied over OK. I am asked for my user password when I use either the HTML 5 console access program or PuTTY. I am not logging in as root, but the user account has root privileges. I'm new to SSH so I apologize for not being able to explain the issue too well. I'm using Ubuntu 12.04 (server edition, no desktop). Tutorial: https://www.digitalocean.com/community/articles/how-to-set-up-ssh-keys--2
1 comment
  • ****Hi
    my query: for connection two servers without passwords using ssh

    for this i generated idrsa and idrsa.pub by using command “ ssh-keygen”
    i copied the idrsa.pub in the remote server which i want to connect to from my server as “**authorizedkeys” in ~/.ssh/ directory ie ( in remote server i placed id_rsa.pub file as “~/.ssh/authorized_keys** ”
    but still i’m not able to connect to remote server without password. can anyone give the solution why it is happend. u can also mail me saiseshan.velidimalla@gmail.com for solution

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
22 answers
just type in ssh root@xxxxxx, if you setup a different key besides id_rsa just use ssh -i /path/to/key_rsa root@xxxxxxxx
Sorry, after generate a ssh key by DO panel, can anybody explain how to connect to the server (ie by putty) without using the root password but using the recent ssh key certificate?

The DigitalOcean control panel SSH Keys are only for the root user. They enable you to log into your account as root, without the root password email. You can then create a new sudoer.

Logging in as the new user, even one that can use sudo, however, will still require a password.

I am having a similar issue to the author of opening post.

Followed these directions: https://www.digitalocean.com/community/tutorials/initial-server-setup-with-ubuntu-14-04

Have added a new user to the server and added .ssh/authorized_keys . When I login with this new user I am still required to input password.

I would like to completely disable passwords and just use ssh. Does anyone know what the issue may be?

by Justin Ellingwood
When you start a new server, there are a few steps that you should take every time to add some basic security and set a solid foundation. In this guide, we'll walk you through the basic steps necessary to hit the ground running with Ubuntu 14.04.

Anyone here using DSA keys and a Ubuntu 16.04 droplet (with OpenSSH 7.x by default) should note that DSA keys (pubkey starting with “ssh-dss”) are not accepted by default anymore. This issue caused problems very similar to ones described in the original question. This is understandable because if the keys are not accepted, the ssh reverts back to asking the password.

See:

Possible it helps:

All the directories starting from root and up to the .ssh directory in your home directory must not have write permission for either ‘group’ or 'other’

Do:

chmod g-w,o-w ~/.ssh
chmod g-w,o-w ~./ssh/authorized_keys

http://superuser.com/questions/431911/ssh-asking-for-password-for-one-user-and-not-another

Thank you for the information! This is very helpful.
This is a bit confusing for me, as I am considering setting up an account. Does this mean DigitalOcean accounts have a designated user (root) who can log in without password (after ssh keys are setup), and all other accounts after properly setting up ssh keys still have to provide password to login?
We never login to customer accounts.

This is purely a preference for customers.

You can either have your root password emailed to you, which we then highly recommend you change immediately as email isn't the most secure form of communication or you can add an SSH key into the control panel and use that to launch virtual servers.

When you use an SSH key to launch a virtual server we do not email you a root password and instead you use the secure key to connect to the server directly as root.

Thanks
The SSH Key management in the control panel is used during new droplet creation.

If you add an SSH Key to the control panel after your server is created it will not update an existing virtual server.

When you create a new server however you can select the SSH key and it will be installed for the root user instead of having a root password generated.
Previous 1 2 3 Next