Configuring Secure Shell (SSH) Access

nixos/doc/manual/configuration/ssh.section.md

68269776ffd737d30b49e276751159b518415491d50d5bef00000003000001fc

# Secure Shell Access {#sec-ssh}

Secure shell (SSH) access to your machine can be enabled by setting:

```nix
{ services.openssh.enable = true; }
```

By default, root logins using a password are disallowed. They can be
disabled entirely by setting
[](#opt-services.openssh.settings.PermitRootLogin) to `"no"`.

You can declaratively specify authorised public keys for a user
as follows:

```nix
{
  users.users.alice.openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAB3NzaC1kc3MAAACBAPIkGWVEt4..." ];
}
```

Chunks

5ee7fe83 (1st chunk of `nixos/doc/manual/configuration/ssh.section.md`)

Title: Configuring Secure Shell (SSH) Access

Summary

This chunk details how to enable Secure Shell (SSH) access on a machine by setting `services.openssh.enable = true;`. It explains that root logins with passwords are disallowed by default and can be explicitly disabled. Additionally, it shows how to declaratively specify authorized public keys for individual users.