Your browser does not allow storing cookies. We recommend enabling them.

SSH

User Authentication with Passwords

The password authentication method is the easiest to implement, as it is enabled by default. Password authentication uses the RACF system password of the user.

To allow password authentication, make sure that the AllowedAuthentications keyword of the /opt/tectia/etc/sshd2_config configuration file on the server contains the argument password:

AllowedAuthentications         password

Other authentication methods can be listed in the configuration file as well.

To allow the users to change expired passwords, uncomment the following line in the /opt/tectia/etc/sshd2_config file:

AuthPassword.ChangePlugin      ssh-passwd-plugin
[Note]Note

With passwords, it is also possible to use keyboard-interactive authentication. See User Authentication with Keyboard-Interactive for more information.


 

 
What to read next:

  • Reduce Secure Shell risk. Get to know the NIST 7966.



    The NISTIR 7966 guideline from the Computer Security Division of NIST is a direct call to action for organizations regardless of industry and is a mandate for the US Federal government.
    Download now
  • ISACA Practitioner Guide for SSH



    With contributions from practitioners, specialists and SSH.COM experts, the ISACA “SSH: Practitioner Considerations” guide is vital best practice from the compliance and audit community.
    Download now