RancherOS supports adding SSH keys through the cloud-config file. Within the cloud-config file, you simply add the ssh keys within the
#cloud-config ssh_authorized_keys: - ssh-rsa AAA...ZZZ [email protected] - ssh-rsa BBB...ZZZ [email protected]
When we pass the cloud-config file during the
ros install command, it will allow these ssh keys to be associated with the rancher user. You can ssh into RancherOS using the key.
$ ssh -i /path/to/private/key [email protected]<ip-address>
Please note that OpenSSH 7.0 and greater similarly disable the ssh-dss (DSA) public key algorithm. It too is weak and we recommend against its use.
SSHD Port and IP
Available as of v1.3
RancherOS supports changing the sshd port and IP, you can use these in the cloud-config file:
rancher: ssh: port: 10022 listen_address: 172.22.100.100
These settings are only designed for default console. Because if you change sshd-config, restart the host will restore the default, the new configuration will not take effect.
For other consoles, all files are persistent, you can modify sshd-config by yourself.