How do I setup sshd on Mac OS X to only allow key-based authentication?

ssh security password mac-osx keys

After a little trial and error, I found the answer myself. These options need to be set in /etc/sshd_config:

PasswordAuthentication no
ChallengeResponseAuthentication no

Only changing one of them is not enough.


In /etc/ssh/sshd_config

# To disable tunneled clear text passwords, change to no here! Also,
# remember to set the UsePAM setting to 'no'.
#PasswordAuthentication yes
#PermitEmptyPasswords no

Set PasswordAuthentication to no and remove the # before it.

Related

Rsync over ssh with root access on both sides
How can I increase ssh security? Can I require both a key and password?
How can I search the info column in Wireshark?
What does Upstream and Downstream mean?
How to exclude some users from Linux Top screen?
In what condition, should I create a system user instead of a normal user?
Why are outdated packages installed by yum on CentOS? (specifically PHP 5.1) How to fix?
User in domain admin group cannot access directory the group has permission to access
Scaling Logstash (with redis/elasticsearch)
Does a MongoDB replica set require at least 2 or 3 members?
How to expose a UNIX domain socket directly over TCP
Cannot disable password expiry on Server 2012