Restrict certain users log onto a system via SSH server

by on January 24, 2007 · 0 comments· LAST UPDATED January 25, 2007

in , ,

Q. How do I limit what users can log onto a my Linux server system via OpenSSH / SSHD server?

A. OpenSSH server allows to specify usernames for login. According to man page syntax is as follows::
AllowUsers user1 user2

AllowUsers keyword can be followed by a list of user name patterns, separated by spaces. If specified, login is allowed only for user names that match one of the patterns. * and ? can be used as wildcards in the patterns. Only user names are valid; a numerical user ID is not recognized. By default, login is allowed for all users. If the pattern takes the form USER@HOST then USER and HOST are separately checked, restricting logins to particular users from particular hosts.

Step # 1: Open sshd_config file

# vi /etc/ssh/sshd_config

Step # 2: Add a user

Only allow user vivek to login by adding following line:
AllowUsers vivek

Step # 3: Restart sshd

Save and close the file. In the above example, user vivek has already been created on the system. Now just restart sshd:
# /etc/init.d/sshd restart

You can also use -
Linux PAM configuration that allows or deny login via the sshd server

TwitterFacebookGoogle+PDF versionFound an error/typo on this page? Help us!

{ 0 comments… add one now }

Leave a Comment

Tagged as:

Previous Faq:

Next Faq: