I have a host (named giggles) whose root account does not accept incoming SSH connections. It has a user (kevin) account that does. Moreover the two accounts have exactly the same credentials for incoming root accounts, and that work for the user account but not for root.
From two different calling machines, I've done both "ssh -v giggles" and "ssh -v kevin@giggles". This verified that the same credentials are presented in both cases, but only the user account (kevin) accepted the connection.
I've used diff and vimdiff to verify that authorized_keys in both root and kevin on giggles contain identical lines for the incoming root connection. But only kevin accepts the call.
The machines are all running Xubuntu, either 20 or 22.
PermitRootLogin is left as the default: prohibit-password
. Since I use
root so much working on this cluster (7 hosts), I intend to move around with SSH a lot, and will leave it so.
Neither AllowUsers nor DenyUsers is mentioned in my config files, not even commented out.
I can, of course, sudo into the root account once I'm in the user account, but this is awkward for some of the things I do. And it ain't right.
The error message is
root@giggles: Permission denied (publickey).
What else should I be looking at?
PermitRootLogin yes
in/etc/ssh/sshd_config
? Sorry if that is too obvious a problem just thought I'd check.