OpenSSH Server is installed by default on FreeBSD. But on a fresh FreeBSD system, remote SSH logins are not allowed. You must enable SSH access yourself to access your FreeBSD server via SSH. This brief guide will explain how to enable SSH on FreeBSD. All steps provided below are tested on FreeBSD 12.
Enable SSH On FreeBSD
If you don't have created any normal users on your system yet, create one first.
For example, I am going to create an user named ostechnix using command:
# adduser
You will be prompted to answer a couple questions. Answer them accordingly.
Next, edit /etc/rc.conf file:
# vi /etc/rc.conf
Add the following line at the end:
sshd_enable="YES"
Enable SSH access on freebsd
Hit ESC and type :wq to save and quit the file.
Finally, start SSH service:
# /etc/rc.d/sshd start
start ssh service on freebsd
Done! Now you can access your FreeBSD server via SSH from any system on the network like below.
$ ssh [email protected]
Replace [email protected] in the above command with your user name and ip address.
As you may already know, when you SSH into a FreeBSD server for the first time, you will be prompted to verify the server's fingerprint. Simply type Yes to continue and type the password of the user.
Sample output:
The authenticity of host '192.168.225.27 (192.168.225.27)' can't be established. ECDSA key fingerprint is SHA256:BO3aI3fuRdpYDgoSohbYrMi/LH9wx9hAZNf0uQ64snI. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.225.27' (ECDSA) to the list of known hosts. Password for [email protected]: FreeBSD 12.0-RELEASE-p10 GENERIC Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed with the system are in the /usr/local/share/doc/freebsd/ directory, or can be installed later with: pkg install en-freebsd-doc For other languages, replace "en" with a language code like de or fr. Show the version of FreeBSD installed: freebsd-version ; uname -a Please include that output and any error messages when posting questions. Introduction to manual pages: man man FreeBSD directory layout: man hier Edit /etc/motd to change this login announcement. To see the last time that you logged in, use lastlogin(8). -- Dru <[email protected]> $
Enable SSH Root Access
By default, SSH root login is disabled for security purposes on FreeBSD. So, you can't access your FreeBSD server via SSH as root user. It is strongly recommended to leave SSH root login disabled and use a non-privileged user and allow SSH access to that user as described above. However, you can change this behaviour and allow SSH access to the root user if you really want to.
Edit /etc/ssh/sshd_config file:
# vi /etc/ssh/sshd_config
Find the following line:
#PermitRootLogin no
Uncomment it by removing the # symbol and change it's value to yes like below:
PermitRootLogin yes
Save and quit the file. Restart SSH service using command:
# /etc/rc.d/sshd restart
Now you can be able to login via SSH as root user from any system on the network using command.
ssh [email protected]
Sample output:
Password for [email protected]: Last login: Tue Sep 3 16:41:44 2019 FreeBSD 12.0-RELEASE-p10 GENERIC Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed with the system are in the /usr/local/share/doc/freebsd/ directory, or can be installed later with: pkg install en-freebsd-doc For other languages, replace "en" with a language code like de or fr. Show the version of FreeBSD installed: freebsd-version ; uname -a Please include that output and any error messages when posting questions. Introduction to manual pages: man man FreeBSD directory layout: man hier Edit /etc/motd to change this login announcement. [email protected]:~ #
Again, enabling SSH access for root account is not recommended. I strongly suggest you to use a non-privileged user and leave SSH root login disabled.
Thanks for stopping by!
Help us to help you:
- Subscribe to our Email Newsletter : Sign Up Now
- Support OSTechNix : Donate Via PayPal
- Download free E-Books and Videos : OSTechNix on TradePub
- Connect with us: Reddit | Facebook | Twitter | LinkedIn | RSS feeds
Have a Good day!!
5 comments
Thank you for thorough explanation! But this did not help me with my new GhostBSD 12.1 installation. Whatever I tried, including the ‘sshd_enable=”YES”‘ in /etc/rc.conf, the sshd was not starting on boot. I was almost pulling my hair over this anomaly. Running ‘service sshd start’ started the service for sure, but I’d expect it to survive rebooting the workstation. I found the answer by lucky chance from … Google. The sshd did behave after I run the following: ‘rc-update add sshd default’. This created soft link for sshd to directory /etc/runlevels/default . Maybe someone can enlighten shed a light on why the above guide was not sufficient. It might be that the default runlevel link for sshd is essential and it was omitted from GhostBSD 12.1 by unlucky chance.
Very good guide, if it were otherwise Linux as a server, how to proceed from FreeBSD ?
Could you please you elaborate the question? Are you asking to setup SSH on Linux?
Pretty Cool!!!. Thanks
@Robert Tiismus
GhostBSD uses OpenRC as init system which starts system services such as sshd via command “rc-update add sshd default”
FreeBSD uses SysV-style init as init system which uses a line in /etc/rc.conf to start system service as in “sshd_enable=”YES””