When I set SSH configuration Authentication type on my RUT360 to “Key-based only” then I can still log on with password for both, the admin and the root user. I consider this a security issue. The Public keys seem to be respected only for the root user, not the admin user (ok, but would be nice to see documented).
Greetings, @dd70 ,
Welcome to Teltonika Community!
On RUT360, the SSH access settings can be found in System → Administration → Access Control. There you can choose how SSH authenticates:
- Password (default): password only.
- Key-based only - enables key-based authentication only and disables password authentication for root user
- Use both: allows both password and key.
Here is a wiki article supporting this information:
Important behavior detail:
Even if you select Key‑based only, the WebUI login accounts aren’t directly used for SSH. RUT360’s SSH login uses the internal root user regardless of the WebUI username (admin or others). In practice this means:
- SSH with public key applies to
rootonly. - WebUI users like
adminaren’t directly mapped to separate SSH credentials.
So if you want SSH without passwords you’ll configure keys for root — and you can create additional users for WebUI, but they won’t change how SSH authentication works.
I hope this answers your question,
Warm regards,
V.
This topic was automatically closed after 60 days. New replies are no longer allowed.