Hey SA Community,
I am looking to disable root login via SSH which is easy enough but I also don't want to lose my ability to SFTP the files in /etc/netwitness/ng/envision/etc/devices.
I have already setup PAM and added the users to wheel so I can get root access if needed. The best way I thought to do this was to change group ownership to wheel then change permissions to the files to 660 so I will be able to sftp the information off with my own user account. I am just worried this might break other internal processes, any ideas?
If all else fails I will open a support case and see what they say also.
Thanks
You should SFTP those files to the home directory of the user that you created to SSH to that appliance. Do not change the permissions on the directory. You went to all this trouble to deny direct root logins for SSH, so don't compromise that control by then allowing direct SFTP of files with root-like permissions to the appliance. If you want to do that just allow root logins. So, SFTP the files to the home directory of the user, then SSH to the appliance and sudo the file to the appropriate place.