Project

General

Profile

Actions

Bug #8572

closed

Secure shell: "Authentication Method" option ignored when RSA key configured

Added by Karl Rigan about 7 years ago. Updated about 7 years ago.

Status:
Not a Bug
Priority:
Normal
Assignee:
-
Category:
Web Interface
Target version:
-
Start date:
06/13/2018
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.4.3_1
Affected Architecture:

Description

When one (or more) RSA key(s) is(are) configured for the admin user, the "Authentication Method" option for Secure shell login (under System > Advanced > Admin Access) is ignored.

The secure shell authentication defaults to key-only mode, even with an unchecked box.

How to reproduce:
1) Uncheck "Disable password login for Secure Shell (RSA/DSA key only)" under System > Advanced > Admin Access, "Secure Shell" section.
2) Add a ssh RSA key for user "admin" in System > User Manager > Users.
3) Try to login via a ssh vlient using the key provided above `ssh `.
4) No password requested, authentication is successful.

NB: On my system, "admin" is the only configured user.

Actions #1

Updated by Jim Pingle about 7 years ago

  • Status changed from New to Not a Bug

The box is working as designed. That enables/disables password authentication. Keys always work. Whether or not the key requires a password is up to your key.

On 2.4.4 there is an additional choice to require keys and passwords together, see #8402

Actions

Also available in: Atom PDF