https://live.paloaltonetworks.com/t5/general-topics/disable-ssh-password-authentication/m-p/51767#M38092 <HTML><HEAD></HEAD><BODY><P>I appreciate the response- however, I would still prefer to be able to disable password based auth entirely through SSH.&nbsp; I'll submit this as a feature request.</P><P></P><P>Thanks-</P></BODY></HTML> Tue, 09 Jul 2013 12:52:35 GMT ShaunD 2013-07-09T12:52:35Z https://live.paloaltonetworks.com/t5/general-topics/disable-ssh-password-authentication/m-p/51765#M38090 <HTML><HEAD></HEAD><BODY><P>After I have loaded public keys for administrators on my PA Devices, is there a way to disable SSH password based authentication?</P><P></P><P>Thanks!</P></BODY></HTML> Mon, 08 Jul 2013 21:03:15 GMT https://live.paloaltonetworks.com/t5/general-topics/disable-ssh-password-authentication/m-p/51765#M38090 ShaunD 2013-07-08T21:03:15Z https://live.paloaltonetworks.com/t5/general-topics/disable-ssh-password-authentication/m-p/51766#M38091 <HTML><HEAD></HEAD><BODY><P>For&nbsp; a&nbsp; defined&nbsp; Administrators&nbsp; (Default admin excluded), you can check the option "Use only client certificate authentication (Web)"&nbsp; along with :Use Public Key Authentication (SSH)" this will <STRONG>virtually*</STRONG> disable the password based auth for ssh , but you would have to&nbsp; configure Cert-Based auth for WebUI logins : <A __default_attr="2672" __jive_macro_name="document" class="jive_macro jive_macro_document" href="https://live.paloaltonetworks.com/"></A></P><P></P><P><STRONG>virtually*=</STRONG> Password would still be prompted&nbsp; for admin if private key is not used during logins.</P></BODY></HTML> Tue, 09 Jul 2013 09:05:18 GMT https://live.paloaltonetworks.com/t5/general-topics/disable-ssh-password-authentication/m-p/51766#M38091 UhMayYeah 2013-07-09T09:05:18Z https://live.paloaltonetworks.com/t5/general-topics/disable-ssh-password-authentication/m-p/51767#M38092 <HTML><HEAD></HEAD><BODY><P>I appreciate the response- however, I would still prefer to be able to disable password based auth entirely through SSH.&nbsp; I'll submit this as a feature request.</P><P></P><P>Thanks-</P></BODY></HTML> Tue, 09 Jul 2013 12:52:35 GMT https://live.paloaltonetworks.com/t5/general-topics/disable-ssh-password-authentication/m-p/51767#M38092 ShaunD 2013-07-09T12:52:35Z