...
| Property | Description |
|---|---|
| allow-none-crypto (yes|no; Default: no) | Whether to allow connection if cryptographic algorithms are set to none. |
| always-allow-password-login (yes | no; Default: no) | Whether to allow password login at the same time when public key authorization is configured for a user. |
| forwarding-enabled (both | local | no | remote; Default: no) | Allows to control which SSH forwarding method to allow:
|
| host-key-size (1024 | 1536 | 2048 | 4096 | 8192; Default: 2048) | RSA key size when host key is being regenerated. |
| host-key-type (ed25519 | rsa; Default: rsa) | Select host key type |
| strong-crypto (yes | no; Default: no) | Use stronger encryption, HMAC algorithms, use bigger DH primes and disallow weaker ones:
|
...
For testing or security reasons it may be required to log - in to other host using certain source address of the connection. In this case src-address=<ip address> argument has to be used. Note that IP address in this case supports both, IPv4 and IPv6.
...
Example of importing private key for user admin
First of all, export currently generated SSH keys to a file:
...
| Warning |
|---|
If the server does not support pseudo-tty (ssh -T or ssh host command), like mikrotik MikroTik ssh server, then it is not possible to send multiline commands via SSH |
...
| Note |
|---|
For security reasons, plain text password input is not allowed. To ensure safe execution of the command remotely, use SSH PKI authentication for users on both sides. |
| Warning |
|---|
the The user group and script policy executing the command requires test permission |
...