Restrict certain users log onto a system via SSH server

by on January 24, 2007 · 0 comments· last updated at January 25, 2007

Q. How do I limit what users can log onto a my Linux server system via OpenSSH / SSHD server?

A. OpenSSH server allows to specify usernames for login. According to man page syntax is as follows::
AllowUsers user1 user2

AllowUsers keyword can be followed by a list of user name patterns, separated by spaces. If specified, login is allowed only for user names that match one of the patterns. * and ? can be used as wildcards in the patterns. Only user names are valid; a numerical user ID is not recognized. By default, login is allowed for all users. If the pattern takes the form USER@HOST then USER and HOST are separately checked, restricting logins to particular users from particular hosts.

Step # 1: Open sshd_config file

# vi /etc/ssh/sshd_config

Step # 2: Add a user

Only allow user vivek to login by adding following line:
AllowUsers vivek

Step # 3: Restart sshd

Save and close the file. In the above example, user vivek has already been created on the system. Now just restart sshd:
# /etc/init.d/sshd restart

You can also use -
Linux PAM configuration that allows or deny login via the sshd server



You should follow me on twitter here or grab rss feed to keep track of new changes.

Featured Articles:

{ 0 comments… add one now }

Leave a Comment

You can use these HTML tags and attributes for your code and commands: <strong> <em> <ol> <li> <u> <ul> <kbd> <blockquote> <pre> <a href="" title="">

Tagged as:

Previous Faq:

Next Faq: