In this lab, we will restrict SSH access to specific user accounts from specific sources. This will allow us to granularly control SSH access to a host.
*This course is not approved or sponsored by Red Hat.*
Learning Objectives
Successfully complete this lab by achieving the following learning objectives:
- Allow Susan SSH access from host susan-ws.office21.net
Edit the
/etc/ssh/sshd_config
file with the following line:sudo vi /etc/ssh/sshd_config
- enter password for cloud_user
AllowUsers Susan@susan-ws.office21.net
- Permit root SSH login from the subnet 10.0.1.0/24
- The first step is to permit root logins by removing the comment in front of the line
#PermitRootLogin yes
in the/etc/ssh/sshd_conf
file. - Secondly, we need to add
root@10.0.1.0/24
to theAllowUsers
line in the/etc/ssh/sshd_config
file. Now we need to restart the
sshd
service so the changes we made will take affect:systemctl restart sshd
- The first step is to permit root logins by removing the comment in front of the line