Bug #8572
closedSecure shell: "Authentication Method" option ignored when RSA key configured
0%
Description
When one (or more) RSA key(s) is(are) configured for the admin user, the "Authentication Method" option for Secure shell login (under System > Advanced > Admin Access) is ignored.
The secure shell authentication defaults to key-only mode, even with an unchecked box.
How to reproduce:
1) Uncheck "Disable password login for Secure Shell (RSA/DSA key only)" under System > Advanced > Admin Access, "Secure Shell" section.
2) Add a ssh RSA key for user "admin" in System > User Manager > Users.
3) Try to login via a ssh vlient using the key provided above `ssh admin@192.168.0.1`.
4) No password requested, authentication is successful.
NB: On my system, "admin" is the only configured user.
Updated by Jim Pingle about 7 years ago
- Status changed from New to Not a Bug
The box is working as designed. That enables/disables password authentication. Keys always work. Whether or not the key requires a password is up to your key.
On 2.4.4 there is an additional choice to require keys and passwords together, see #8402